[Git][security-tracker-team/security-tracker][master] Reserve DLA-1853-1 for libspring-java

Sat Jul 13 22:07:56 BST 2019


Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0c67a703 by Roberto C. Sánchez at 2019-07-13T21:07:35Z
Reserve DLA-1853-1 for libspring-java

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[13 Jul 2019] DLA-1853-1 libspring-java - security update
+	{CVE-2014-3578 CVE-2014-3625 CVE-2015-3192 CVE-2015-5211 CVE-2016-9878}
+	[jessie] - libspring-java 3.0.6.RELEASE-17+deb8u1
 [10 Jul 2019] DLA-1852-1 python3.4 - security update
 	{CVE-2019-9948}
 	[jessie] - python3.4 3.4.2-1+deb8u5


=====================================
data/dla-needed.txt
=====================================
@@ -82,9 +82,6 @@ libsdl2
 libsdl2-image
   NOTE: see libsdl2 entry.
 --
-libspring-java (Roberto C. Sánchez)
-  NOTE: 20190624: Three CVEs remain to be patched. (roberto)
---
 libxslt (Markus Koschany
   NOTE: 20190701: the Security Team doesn't want us to mark when jessie was explicitely tested as unfixed, so writing it here (beuc)
   NOTE: 20190701: CVE-2019-13117: patch applies on jessie



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c67a703459ad064efa95f004cdb78449276f84e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c67a703459ad064efa95f004cdb78449276f84e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190713/01e78192/attachment-0001.html>
