[Git][security-tracker-team/security-tracker][master] Update note on CVE-2019-8457/sqlite3 in data/dla-needed.txt
Jonas Meurer
gitlab at salsa.debian.org
Fri Jul 5 14:29:15 BST 2019
Jonas Meurer pushed to branch master at Debian Security Tracker / security-tracker
Commits:
64a7dab3 by Jonas Meurer at 2019-07-05T13:28:47Z
Update note on CVE-2019-8457/sqlite3 in data/dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -107,8 +107,7 @@ sdl-image1.2
NOTE: see libsdl2 entry.
--
sqlite3
- NOTE: CVE-2019-8457: The fix depends on a large former code migration. Backporting would imply
- NOTE: CVE-2019-8457: huge amounts of code duplication. See summary mail to debian-lts:
+ NOTE: CVE-2019-8457: Should be ignored, based on the discussion on debian-lts:
NOTE: CVE-2019-8457: https://lists.debian.org/debian-lts/2019/06/msg00013.html (mejo, 2019-06-13)
NOTE: CVE-2019-5827: No public information about the actual vulnerability available yet. The
NOTE: CVE-2019-5827: patches from sqlite3 3.27.2-3 suggest that it's related to switching to
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/64a7dab3b5c52a104ef53d17371a7557fe112b99
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/64a7dab3b5c52a104ef53d17371a7557fe112b99
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190705/7153fc5c/attachment.html>
More information about the debian-security-tracker-commits
mailing list