Roberto C. Sánchez pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
656e87c2 by Roberto C. Sánchez at 2020-06-12T18:14:52-04:00
LTS: mark CVE-2020-13692/libpgjava as no-dsa for jessie
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -929,6 +929,7 @@ CVE-2020-13692 (PostgreSQL JDBC Driver (aka PgJDBC) before
42.2.13 allows XXE. .
- libpgjava <unfixed> (low)
[buster] - libpgjava <no-dsa> (Minor issue)
[stretch] - libpgjava <no-dsa> (Minor issue)
+ [jessie] - libpgjava <no-dsa> (Minor issue)
NOTE:
https://github.com/pgjdbc/pgjdbc/commit/14b62aca4764d496813f55a43d050b017e01eb65
CVE-2020-13691
RESERVED
=====================================
data/dla-needed.txt
=====================================
@@ -79,8 +79,6 @@ libmatio (Adrian Bunk)
NOTE: 20190428: older changes seem to also be required for them
NOTE: 20200518: work is ongoing (bunk)
--
-libpgjava
---
linux (Ben Hutchings)
--
linux-4.9 (Ben Hutchings)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/656e87c2eec2c3374cdf296cf1837b9dc7f19c70
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/656e87c2eec2c3374cdf296cf1837b9dc7f19c70
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
