Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits: ccc8d069 by Chris Lamb at 2021-06-04T08:02:10+01:00 data/dla-needed.txt: Correct ordering - - - - - 6489b3d9 by Chris Lamb at 2021-06-04T08:02:19+01:00 data/dla-needed.txt: Claim django. - - - - - f73e2a68 by Chris Lamb at 2021-06-04T08:02:31+01:00 data/dla-needed.txt: Claim python-django. - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -36,6 +36,8 @@ condor NOTE: 20200727: Waiting on maintainer feedback: https://lists.debian.org/debian-lts/2020/07/msg00108.html (roberto) NOTE: 20210205: Some patches seems to be available but not clear if it solves the whole issue or not. (ola) -- +django(Chris Lamb) +-- eterm (Utkarsh) NOTE: 20210521: src/term.c:process_escape_seq(), probably just disable vulnerable escape sequence -- @@ -69,9 +71,7 @@ prosody (Anton Gladky) NOTE: 20210519: at least the 10MB limit mentioned in CVE-2021-32918 is present NOTE: 20210530: WIP -- -python-django --- -rxvt (Utkarsh) +python-django (Chris Lamb) -- ruby-actionpack-page-caching NOTE: 20200819: Upstream's patch on does not apply due to subsequent @@ -107,6 +107,8 @@ ruby-nokogiri (Markus Koschany) NOTE: 20210403: check if default change (trust -> don't trust external schemas) possibly breaks compatibility (Beuc) NOTE: 20210601: Very similar to the Jessie fix but the r-deps are different and require more testing. -- +rxvt (Utkarsh) +-- salt NOTE: 20210329: WIP (utkarsh) NOTE: 20210510: patches ready; reviewing and testing with donfede, damien, and bdrung. (utkarsh) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/7dbcdbb8df3a137be0f5d1ab1c08ea24587aaf6f...f73e2a689ceebe3e9cde0f3877310eea0d02a17b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/7dbcdbb8df3a137be0f5d1ab1c08ea24587aaf6f...f73e2a689ceebe3e9cde0f3877310eea0d02a17b You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
