Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
48c98528 by Markus Koschany at 2022-12-04T14:16:46+01:00
Reserve DLA-3219-1 for jhead
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Dec 2022] DLA-3219-1 jhead - security update
+ {CVE-2021-34055 CVE-2022-41751}
+ [buster] - jhead 1:3.00-8+deb10u1
[03 Dec 2022] DLA-3218-1 libpgjava - security update
{CVE-2022-41946}
[buster] - libpgjava 42.2.5-2+deb10u3
=====================================
data/dla-needed.txt
=====================================
@@ -86,11 +86,6 @@ imagemagick (Roberto C. Sánchez)
NOTE: 20220904: VCS:
https://salsa.debian.org/lts-team/packages/imagemagick.git
NOTE: 20220904: Should be synced with Stretch. (apo)
--
-jhead (Markus Koschany)
- NOTE: 20221031: Programming language: C.
- NOTE: 20221031: Note that multiple options are vulnerable. The attacker have
to trick someone to execute the command but arbitrary code exectuion is not
good..
- NOTE: 20221031: It should be stated in the DLA that multiple options are
affected..
---
jqueryui (Markus Koschany)
NOTE: 20221111: Programming language: JavaScript.
NOTE: 20221111: Follow fixes from bullseye 11.2 (and jessie/elts)
(Beuc/front-desk)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48c985283df376b8a5b8ce9cbb3cca1c269176d0
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48c985283df376b8a5b8ce9cbb3cca1c269176d0
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
