[Secure-testing-commits] r57832 - in data: . DLA

Markus Koschany apo at moszumanska.debian.org
Sun Nov 19 16:57:16 UTC 2017


Author: apo
Date: 2017-11-19 16:57:16 +0000 (Sun, 19 Nov 2017)
New Revision: 57832

Modified:
   data/DLA/list
   data/dla-needed.txt
Log:
Reserve DLA-1180-1 for libspring-ldap-java

Modified: data/DLA/list
===================================================================
--- data/DLA/list	2017-11-19 16:20:14 UTC (rev 57831)
+++ data/DLA/list	2017-11-19 16:57:16 UTC (rev 57832)
@@ -1,3 +1,6 @@
+[19 Nov 2017] DLA-1180-1 libspring-ldap-java - security update
+	{CVE-2017-8028}
+	[wheezy] - libspring-ldap-java 1.3.1.RELEASE-4+deb7u1
 [18 Nov 2017] DLA-1179-1 shibboleth-sp2 - security update
 	{CVE-2017-16852}
 	[wheezy] - shibboleth-sp2 2.4.3+dfsg-5+deb7u2

Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt	2017-11-19 16:20:14 UTC (rev 57831)
+++ data/dla-needed.txt	2017-11-19 16:57:16 UTC (rev 57832)
@@ -48,8 +48,6 @@
   NOTE: https://lists.debian.org/debian-lts/2017/05/msg00012.html
   NOTE: there are some new CVEs now as well
 --
-libspring-ldap-java (Markus Koschany)
---
 libvorbis (Guido Günther)
   NOTE: 20170829: no fix available yet
   NOTE: asked for reproducers for CVE-2017-14160 and CVE-2017-14633 on




More information about the Secure-testing-commits mailing list