During the month of July 2023 and on behalf of Freexian, I worked on the
following:
* DLA-3488-1 for node-tough-cookie=2.3.4+dfsg-1+deb10u1
[CVE-2023-26136]
https://lists.debian.org/msgid-search/?m=zkxrmnkoiqoif...@debian.org
* DLA-3493-1 for symfony=3.4.22+dfsg-2+deb10u2
[CVE-2021-21424, CVE-2022-24894 and CVE-2022-24895]
https://lists.debian.org/msgid-search/?m=zk3jf8mjqvymd...@debian.org
* DLA-3496-1 for lemonldap-ng=2.0.2+ds-7+deb10u9
[CVE-2023-28862 and fix incorrect backport for CVE-2021-20874]
https://lists.debian.org/msgid-search/?m=zlemv3qczpjl9...@debian.org
* DLA-3499-1 for libapache2-mod-auth-openidc=2.3.10.2-1+deb10u3
[CVE-2021-39191 and CVE-2022-23527]
https://lists.debian.org/msgid-search/?m=zlcxcsyvnie6p...@debian.org
* DLA-3507-1 for pandoc=2.2.1-3+deb10u1
[CVE-2023-35936 and CVE-2023-38745, plus responsible disclosure for
the latter]
https://lists.debian.org/msgid-search/?m=zmaecno5w6pxb%2...@debian.org
Thanks to the sponsors for financing the above, and to Freexian for
coordinating!
--
Guilhem.
signature.asc
Description: PGP signature