-
Debian LTS Advisory DLA-2680-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Markus Koschany
June 07, 2021 https://wiki.debian.org/LTS
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Mon, 07 Jun 2021 21:02:34 +0200
Source: nginx
Binary: nginx nginx-doc nginx-common nginx-full nginx-light nginx-extras
libnginx-mod-http-geoip libnginx-mod-http-image-filter
libnginx-mod-http-xslt-filter libnginx-mod-mail
moining,
today two packages were unclaimed for LTS:
-ceph (Emilio)
-thunderbird (Emilio)
and two for ELTS:
-ceph (Emilio)
-openjdk-7 (Emilio)
Nobody claimed 4 packages or more.
Two DLAs have been reserved and haven't been published yet:
- DLA 2678-1 (06 Jun 2021) (ruby-nokogiri)
- DLA 2676-1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
- -
Debian LTS Advisory DLA-2679-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
June 07, 2021
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Thu, 03 Jun 2021 21:51:27 +0200
Source: thunderbird
Architecture: source
Version: 1:78.11.0-1~deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Carsten Schoenert
Changed-By: Emilio Pozuelo Monfort
Changes:
On 02/06/2021 14:24, Markus Koschany wrote:
Hi Emilio,
Am Mittwoch, den 02.06.2021, 12:26 +0200 schrieb Emilio Pozuelo Monfort:
I think it is time
we declare the block list unsupported, asking users to switch to the allow
list.
Thoughts?
I believe it is sensible to switch to the whitelist
On Sun, Jun 06, 2021 at 08:38:17PM +0200, Anton Gladky wrote:
> Multiple security issues have been discovered in libwebp
I always liked the idea of putting what a package really is used for / does in
the security advisories.
Something like:
Lossy compression of digital photographic images