[Git][security-tracker-team/security-tracker][master] 4 commits: Add rssh to dla-needed.txt

Sat Feb 2 21:19:14 GMT 2019

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d5ebd1fd by Markus Koschany at 2019-02-02T21:04:43Z
Add rssh to dla-needed.txt

- - - - -
9fb1c954 by Markus Koschany at 2019-02-02T21:06:23Z
CVE-2019-6446,python-numpy: Jessie is no-dsa

Switching the default is not sensible for Jessie.

- - - - -
c6351451 by Markus Koschany at 2019-02-02T21:18:19Z
Add uriparser to dla-needed.txt

- - - - -
77be27da by Markus Koschany at 2019-02-02T21:18:50Z
Add libreoffice to dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -2019,6 +2019,7 @@ CVE-2015-9276 (SmarterTools SmarterMail before 13.3.5535 was vulnerable to store
 CVE-2019-6446 (An issue was discovered in NumPy 1.16.0 and earlier. It uses the pickle ...)
 	- python-numpy <unfixed>
 	[stretch] - python-numpy <no-dsa> (Minor issue)
+	[jessie] - python-numpy <no-dsa> (Minor issue)
 	NOTE: https://github.com/numpy/numpy/issues/12759
 	NOTE: For upstream this works as intended and is documented. Proposed
 	NOTE: solution of switching the default might be dangerous for users who rely on


=====================================
data/dla-needed.txt
=====================================
@@ -77,6 +77,8 @@ libraw (Abhijith PA)
   NOTE: 20190202: Marked CVE-2017-14348, CVE-2018-20337, CVE-2018-20363, CVE-2018-20364
   NOTE: and CVE-2018-20365 as no DSA.
 --
+libreoffice
+--
 libsolv
   NOTE: 20191027: maintainer is Mike Gabriel)
 --
@@ -126,8 +128,12 @@ qemu (Hugo Lefeuvre)
   NOTE: CVE-2018-19665: see https://lists.debian.org/debian-lts/2019/01/msg00073.html
   NOTE: 20190129: working on a second upload addressing latest cves
 --
+uriparser
+--
 rdesktop (Emilio)
 --
+rssh
+--
 sox
   NOTE:20190202: Fixed in Buster, Stretch will be fixed via point update. Used
   NOTE: by sponsors. (apo)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8c5ab2073c0e515d4689d4e109fb2e15f24ba66e...77be27dac0d3c201ef70e922b2cbd5a521fe0755

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8c5ab2073c0e515d4689d4e109fb2e15f24ba66e...77be27dac0d3c201ef70e922b2cbd5a521fe0755
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190202/5ec58357/attachment-0001.html>
