[Git][security-tracker-team/security-tracker][master] Reserve DLA-1644-1 for policykit-1

Mon Jan 28 12:57:28 GMT 2019

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
31ac9d26 by Emilio Pozuelo Monfort at 2019-01-28T12:57:09Z
Reserve DLA-1644-1 for policykit-1

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[28 Jan 2019] DLA-1644-1 policykit-1 - security update
+	{CVE-2018-19788 CVE-2019-6133}
+	[jessie] - policykit-1 0.105-15~deb8u4
 [25 Jan 2019] DLA-1643-1 krb5 - security update
 	{CVE-2018-5729 CVE-2018-5730 CVE-2018-20217}
 	[jessie] - krb5 1.12.1+dfsg-19+deb8u5


=====================================
data/dla-needed.txt
=====================================
@@ -107,9 +107,6 @@ phpmyadmin (Lucas Kanashiro)
 polarssl
   NOTE: 20121207: Not 100% sure if vulnerable. Upstream would prefer us to move to latest version, etc. (!). (lamby)
 --
-policykit-1 (Emilio)
-  NOTE: 20190119: fix for CVE-2018-19788 not fully functional, investigating complete fix
---
 python3.4 (Brian May)
   NOTE: 20181225: The update should include also the postponed and no-dsa
   NOTE: issues which were already fixed by us in Wheezy. (apo)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/31ac9d26702717ff097b2270e702abee48408680

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/31ac9d26702717ff097b2270e702abee48408680
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190128/2df26a72/attachment.html>
