[Git][security-tracker-team/security-tracker][master] 2 commits: Update status of squid3 in dla-needed.txt

Sat Dec 7 17:10:52 GMT 2019


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3a43b032 by Markus Koschany at 2019-12-07T17:06:01Z
Update status of squid3 in dla-needed.txt

- - - - -
3026272f by Markus Koschany at 2019-12-07T17:10:42Z
Reserve DLA-2023-1 for openjdk-7

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[07 Dec 2019] DLA-2023-1 openjdk-7 - security update
+	{CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999}
+	[jessie] - openjdk-7 7u241-2.6.20-1~deb8u1
 [06 Dec 2019] DLA-2022-1 librabbitmq - security update
 	{CVE-2019-18609}
 	[jessie] - librabbitmq 0.5.2-2+deb8u1


=====================================
data/dla-needed.txt
=====================================
@@ -70,9 +70,6 @@ linux-4.9 (Ben Hutchings)
 opendmarc (Thorsten Alteholz)
   NOTE: 20191124: still testing package, original patch does not seem to be enough
 --
-openjdk-7 (Markus Koschany)
-  NOTE: 20191203: I intend to release OpenJDK 7 in a few days after I have included Roberto's autopkgtests. (apo)
---
 opensc (Roberto C. Sánchez)
 --
 openslp-dfsg
@@ -117,6 +114,10 @@ slurm-llnl (Abhijith PA)
   NOTE: 20191125: up for testing https://people.debian.org/~abhijith/upload/slurm-llnl_14.03.9-5+deb8u5.dsc
 --
 squid3 (Markus Koschany)
+  NOTE: 20191207: Sent an RFT to debian-lts. Intend to upload on 10.12.2019 if
+  NOTE: no regressions are reported. CVE-2019-18676 / CVE-2019-12523 still
+  NOTE: unfixed. Requires backport of new API SBuf. Not yet sure how to proceed
+  NOTE: here.
 --
 thunderbird
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/64970877cbec14a1ebc59449fc11e05dcc1ea183...3026272fd7e7b9efdc32276494abd0891c19ec85

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/64970877cbec14a1ebc59449fc11e05dcc1ea183...3026272fd7e7b9efdc32276494abd0891c19ec85
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191207/efed5179/attachment-0001.html>
