Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ec2eb42f by Tobias Frost at 2024-10-19T12:21:07+02:00
Reserver DLA-3923-1 for php-horde-turba.
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,7 @@
+[19 Oct 2024] DLA-3923-1 php-horde-turba - security update
+ {CVE-2022-30287}
+ [bullseye] - php-horde-turba 4.2.25-5+deb11u1
+ [bookworm] - php-horde-turba 4.2.25-5+deb11u1
[17 Oct 2024] DLA-3922-1 python-cryptography - security update
{CVE-2023-23931 CVE-2023-49083}
[bullseye] - python-cryptography 3.3.2-1+deb11u1
=====================================
data/dla-needed.txt
=====================================
@@ -171,7 +171,7 @@ php-horde-turba (tobi)
NOTE: 20241002: rouca to check EOL'd ckeditor3 -> ckeditor[v4] upgrade path
NOTE: 20241002: https://lists.debian.org/debian-lts/2024/10/msg00003.html
NOTE: 20241002: Consider bumping to 2.2.29
- NOTE: 20241002: CVE-2022-30287 is RCE (Beuc/front-desk)
+ NOTE: 20241019: Targeted fix for RCE (CVE-2022-30287) uploaded, keeping
above log to decide for frontdesk if it should remain in dla-needed.
--
proftpd-dfsg
NOTE: 20240815: Added by Front-Desk (Beuc)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec2eb42ff163fcd0f387c2113918f9330cc997fd
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec2eb42ff163fcd0f387c2113918f9330cc997fd
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
