[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] python-crypto / DLA-1283-2

Brian May bam at debian.org
Mon Apr 9 08:08:58 BST 2018 

Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4285bbaa by Brian May at 2018-04-09T17:08:21+10:00
python-crypto / DLA-1283-2

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,5 @@
+[09 Apr 2018] DLA-1283-2 python-crypto - security update
+	[wheezy] - python-crypto 2.6-4+deb7u8
 [06 Apr 2018] DLA-1341-1 sdl-image1.2 - security update
 	{CVE-2017-12122 CVE-2017-14440 CVE-2017-14441 CVE-2017-14442 CVE-2017-14448 CVE-2017-14450}
 	[wheezy] - sdl-image1.2 1.2.12-2+deb7u2
@@ -169,7 +171,6 @@
 	{CVE-2018-3836}
 	[wheezy] - leptonlib 1.69-3.1+deb7u1
 [15 Feb 2018] DLA-1283-1 python-crypto - security update
-	{CVE-2018-6594}
 	[wheezy] - python-crypto 2.6-4+deb7u8
 [13 Feb 2018] DLA-1282-1 graphicsmagick - security update
 	{CVE-2018-6799}


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -101,10 +101,6 @@ patch
   NOTE: 20180407: of a rabbit-hole with respect all the newer "safe_" foo. I suspect if we can just avoid calling
   NOTE: 20180407: make_tempfile (from src/util.c) and safe_unlink (from src/safe.c) then we can avoid most of this. (lamby)
 --
-python-crypto
-  NOTE: Incomplete fix for CVE-2018-6594.
-  NOTE: See https://lists.debian.org/debian-lts/2018/02/msg00069.html
---
 qemu
 --
 qemu-kvm



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4285bbaaa3bc5ffccf9d943e48c2957062be08cb

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4285bbaaa3bc5ffccf9d943e48c2957062be08cb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180409/cefeaf2f/attachment.html>

More information about the debian-security-tracker-commits mailing list