Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
172027fc by Thorsten Alteholz at 2023-01-30T19:39:21+01:00
Reserve DLA-3294-1 for libarchive
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44558,7 +44558,6 @@ CVE-2022-36228
CVE-2022-36227 (In libarchive before 3.6.2, the software does not check for an
error a ...)
- libarchive 3.6.2-1 (bug #1024669)
[bullseye] - libarchive <no-dsa> (Minor issue)
- [buster] - libarchive <postponed> (Minor issue, clean crash, follow
bullseye updates)
NOTE: https://github.com/libarchive/libarchive/issues/1754
NOTE: https://github.com/libarchive/libarchive/pull/1759
NOTE: Fixed by:
https://github.com/libarchive/libarchive/commit/bff38efe8c110469c5080d387bec62a6ca15b1a5
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[30 Jan 2023] DLA-3294-1 libarchive - security update
+ {CVE-2022-36227}
+ [buster] - libarchive 3.3.3-4+deb10u3
[30 Jan 2023] DLA-3293-1 modsecurity-crs - security update
{CVE-2018-16384 CVE-2019-13464 CVE-2020-22669 CVE-2021-35368
CVE-2022-39955 CVE-2022-39956 CVE-2022-39957 CVE-2022-39958}
[buster] - modsecurity-crs 3.2.3-0+deb10u3
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/172027fc778999160442584d1294b91a4f8520b2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/172027fc778999160442584d1294b91a4f8520b2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
