[Git][security-tracker-team/security-tracker][master] Reserve DSA number for samba update

Tue, 30 Nov 2021 04:08:41 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
cd387c03 by Salvatore Bonaccorso at 2021-11-30T13:08:04+01:00
Reserve DSA number for samba update

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -80482,7 +80482,6 @@ CVE-2020-25717 [A user on the domain can become root on 
domain members]
        RESERVED
        {DSA-5003-1}
        - samba 2:4.13.14+dfsg-1
-       [buster] - samba <ignored> (Intrusive backport; backport only 'min 
domain uid' parameter)
        NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14556
        NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14725
        NOTE: https://www.samba.org/samba/security/CVE-2020-25717.html


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[30 Nov 2021] DSA-5015-1 samba - security update
+       {CVE-2020-25717}
+       [buster] - samba 2:4.9.5+dfsg-5+deb10u2
 [28 Nov 2021] DSA-5014-1 icu - security update
        {CVE-2020-21913}
        [buster] - icu 63.1-6+deb10u2


=====================================
data/dsa-needed.txt
=====================================
@@ -46,10 +46,6 @@ rabbitmq-server
 --
 runc
 --
-samba/oldstable (carnil)
-  We will likely only address the 'min domain uid' patch, the fixes for the 
CVEs
-  are otherwise quite intrusive.
---
 sogo
   Maintainer preparing updates
 --



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd387c034cc63daf7804609920c0e815c97d95c3

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd387c034cc63daf7804609920c0e815c97d95c3
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to