[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reserve DSA-4114-1 for jackson-databind (CVE-2017-17485, CVE-2018-5968)
Sebastien Delafond
seb at debian.org
Thu Feb 15 06:52:14 UTC 2018
Sebastien Delafond pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ad3cd659 by Sébastien Delafond at 2018-02-15T07:51:44+01:00
Reserve DSA-4114-1 for jackson-databind (CVE-2017-17485, CVE-2018-5968)
- - - - -
2 changed files:
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/DSA/list
=====================================
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,3 +1,7 @@
+[15 Feb 2018] DSA-4114-1 jackson-databind - security update
+ {CVE-2017-17485 CVE-2018-5968}
+ [jessie] - jackson-databind 2.4.2-2+deb8u3
+ [stretch] - jackson-databind 2.8.6-1+deb9u3
[14 Feb 2018] DSA-4113-1 libvorbis - security update
{CVE-2017-14632 CVE-2017-14633}
[stretch] - libvorbis 1.3.5-4+deb9u1
=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -26,10 +26,6 @@ graphicsmagick
imagemagick
Wait until more issues have piled up
--
-jackson-databind (seb)
- Markus Koschany prepared debdiffs and asked for advice/review in particular
- for the CVE-2017-17485 backport.
---
knot-resolver
--
libav/oldstable
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ad3cd6592ffae8f9ce83bc4f316d410ffc713bf1
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ad3cd6592ffae8f9ce83bc4f316d410ffc713bf1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180215/74ac03e9/attachment.html>
More information about the Secure-testing-commits
mailing list