Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits: a59a3ee6 by Chris Lamb at 2021-10-11T11:20:32+01:00 data/dla-needed.txt: Correct ordering - - - - - fc493cfa by Chris Lamb at 2021-10-11T11:20:39+01:00 data/dla-needed.txt: Triage neutron for stretch LTS (CVE-2021-40085) - - - - - 3154849e by Chris Lamb at 2021-10-11T11:20:50+01:00 data/dla-needed.txt: Claim neutron. - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -59,6 +59,8 @@ mosquitto NOTE: 20210805: coordinating upload to buster before DLA for Stretch (codehelp) NOTE: 20210806: CVE-2021-34432 ignored in buster and stretch. Vulnerable code not accessible. (codehelp) -- +neutron (Chris Lamb) +-- nghttp2 (Anton Gladky) NOTE: 20211010: WIP https://salsa.debian.org/lts-team/packages/nghttp2 -- @@ -75,16 +77,16 @@ openssh (Utkarsh) NOTE: 20211003: also CVE-2021-41617 is new; might be a good idea to NOTE: 20211003: club both these together. (utkarsh) -- -python3.5 (Utkarsh) - NOTE: 20211003: whilst looks like a no-dsa/postponed candidate on a - NOTE: 20211003: quick look, Canonical issued an update via the ESM - NOTE: 20211003: pocket. Needs another look. (utkarsh) --- python-babel NOTE: 20210617: CVE-2021-20095 withdrawn, cf. 251b6e33 and #987824 (abhijith) NOTE: 20210620: http://people.debian.org/~abhijith/backport_of_3a700b5.patch (abhijith) NOTE: 20210620: Revisit when it has an assigned CVE ID (abhijith) -- +python3.5 (Utkarsh) + NOTE: 20211003: whilst looks like a no-dsa/postponed candidate on a + NOTE: 20211003: quick look, Canonical issued an update via the ESM + NOTE: 20211003: pocket. Needs another look. (utkarsh) +-- redis (Chris Lamb) NOTE: 20211004: Fixed in sid and experimental. (lamby) NOTE: 20211006: buster-pu filed in #995825. (lamby) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b877ba972258bdb58933c706e4d384196dc6a960...3154849e9aa164d199fb45869898c55b387ca73c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b877ba972258bdb58933c706e4d384196dc6a960...3154849e9aa164d199fb45869898c55b387ca73c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
