Lynoure Braakman pushed to branch master at Debian Security Tracker / security-tracker
Commits: 68d93651 by Lynoure Braakman at 2021-05-24T22:44:17+02:00 semi-automatic unclaim after 2 weeks of inactivity Signed-off-by: Lynoure Braakman <[email protected]> - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -68,10 +68,10 @@ nvidia-graphics-drivers NOTE: package is in non-free but also in packages-to-support NOTE: only CVE‑2021‑1076 seems to be fixed in the R390 branch used in Stretch, no fix available for CVE-2021-1077 -- -php-phpseclib (Abhijith PA) +php-phpseclib NOTE: 20210503: unclear if 2.x is affected, double check (pochu) -- -phpseclib (Abhijith PA) +phpseclib NOTE: 20210503: apparently 1.x is not affected, but double check (pochu) -- prosody (Anton Gladky) @@ -110,7 +110,7 @@ ruby-kaminari ruby-kramdown NOTE: 20210412: Probably needs two commits (see the one linked in the comment of d6a1cbcb2c. (lamby) -- -ruby-nokogiri (Markus Koschany) +ruby-nokogiri NOTE: 20210403: CVE-2020-26247: Java-level API not included in stretch but CVE also affects C/Ruby-level APIs; NOTE: 20210403: check if default change (trust -> don't trust external schemas) possibly breaks compatibility (Beuc) -- @@ -143,7 +143,7 @@ squid3 thunderbird (Emilio) NOTE: wait for 78.11.0 (Emilio) -- -xmlbeans (Roberto C. Sánchez) +xmlbeans NOTE: 20210222: Affected code changed significantly from 2.6.0 to 3.0.0 (the NOTE: 20210222: upstream release with the fix). Trying to determine how to NOTE: 20210222: implement the changes without introducing too much new code. (roberto) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68d93651a40e709d6c4a2c7bffdc4e0ac4612726 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/68d93651a40e709d6c4a2c7bffdc4e0ac4612726 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
