Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: 00abaa6f by Thorsten Alteholz at 2021-06-29T23:45:52+02:00 CVE-2021-28421 fixed in recent upload - - - - - 4183b593 by Thorsten Alteholz at 2021-06-29T23:46:32+02:00 Reserve DLA-2697-1 for fluidsynth - - - - - 2 changed files: - data/CVE/list - data/DLA/list Changes: ===================================== data/CVE/list ===================================== @@ -17680,7 +17680,6 @@ CVE-2021-28422 CVE-2021-28421 (FluidSynth 2.1.7 contains a use after free vulnerability in sfloader/f ...) - fluidsynth 2.1.7-1.1 (bug #987168) [buster] - fluidsynth 1.1.11-1+deb10u1 - [stretch] - fluidsynth <postponed> (Minor issue; can be fixed in next update) NOTE: https://github.com/FluidSynth/fluidsynth/issues/808 NOTE: https://github.com/FluidSynth/fluidsynth/pull/810 CVE-2021-28420 (A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote at ...) ===================================== data/DLA/list ===================================== @@ -1,3 +1,6 @@ +[29 Jun 2021] DLA-2697-1 fluidsynth - security update + {CVE-2021-28421} + [stretch] - fluidsynth 1.1.6-4+deb9u1 [29 Jun 2021] DLA-2696-1 libjdom2-java - security update {CVE-2021-33813} [stretch] - libjdom2-java 2.0.6-1+deb9u1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c322d3734eb032f45be0d142ee9c135e8d6fb8ca...4183b5931e9b1f3235451c36d71d4e2d6e9e3be5 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c322d3734eb032f45be0d142ee9c135e8d6fb8ca...4183b5931e9b1f3235451c36d71d4e2d6e9e3be5 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits