Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker
Commits: 9c242714 by Ola Lundqvist at 2020-05-04T23:20:02+02:00 It looks like the stretch bluez update can be applied as is. Should be double-checked. The only thing that fail is hog.c but that file does not seem to need an update at all in jessie. Unclaiming in case someone else have the time to double-check this. - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -19,11 +19,14 @@ apache2 (Utkarsh Gupta) NOTE: 20200501: The problem to solve is this: https://bz.apache.org/bugzilla/show_bug.cgi?id=60251 (Ola) NOTE: 20200501: No CVE yet. (Ola) -- -bluez (Ola Lundqvist) +bluez NOTE: 20200330: wip (Emilio) NOTE: 20200420: Many upstream refactorings make this hard to see where the NOTE: 20200420: check for bonded connections should go. (eg. 7d9718cfc, NOTE: 20200420: 718bad60d, etc.) (lamby) + NOTE: 20200503: Looking at the four patches included in the stretch update it looks like it + NOTE: 20200503: can be applied as is. What will fail is hog.c but that file do not seem to + NOTE: 20200503: need an update. (Ola) -- condor NOTE: 20200502: Upstream has only released workarounds; complete fix is still embargoed (roberto) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c242714caeab2266da7665cbd255e70f5eac80f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c242714caeab2266da7665cbd255e70f5eac80f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
