[Git][security-tracker-team/security-tracker][master] 2 commits: clamav: link recent lts discussion

Sylvain Beucler beuc at debian.org
Mon Apr 8 13:37:09 BST 2019 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7bf02944 by Sylvain Beucler at 2019-04-08T12:36:37Z
clamav: link recent lts discussion

- - - - -
e14fbbea by Sylvain Beucler at 2019-04-08T12:36:37Z
dla: add evolution-ews

- - - - -


3 changed files:

- data/CVE/list
- data/dla-needed.txt
- packages/clamav


Changes:

=====================================
data/CVE/list
=====================================
@@ -17166,6 +17166,7 @@ CVE-2019-3890
 	- evolution-ews <unfixed>
 	NOTE: https://gitlab.gnome.org/GNOME/evolution-ews/issues/36
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1678313
+	NOTE: depends on evolution-data-server patch (unrelated to CVE-2018-15587)
 CVE-2019-3889
 	RESERVED
 CVE-2019-3888


=====================================
data/dla-needed.txt
=====================================
@@ -23,6 +23,8 @@ evolution
 --
 evolution-data-server
 --
+evolution-ews
+--
 faad2 (Hugo Lefeuvre)
   NOTE: 20190407: CVE-2018-20362: wrote a patch, currently testing it. This might fix many other
   NOTE: issues at the same time. This is a complex issue which requires a lot of digging in


=====================================
packages/clamav
=====================================
@@ -5,6 +5,7 @@ signatures.
 The security team updates clamav via {old,}stable-updates.
 
 https://lists.debian.org/debian-lts/2018/03/msg00033.html
+https://lists.debian.org/debian-lts/2019/03/msg00161.html
 
 LTS updates need to wait until a respective SUA has been issued to avoid
 breaking upgrades.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/a8825ccde3dc7f576824cfb59e6216096f943630...e14fbbea96f867bde1d16a92a8be2983d4455d7d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/a8825ccde3dc7f576824cfb59e6216096f943630...e14fbbea96f867bde1d16a92a8be2983d4455d7d
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190408/88b88fa4/attachment.html>

More information about the debian-security-tracker-commits mailing list