[Git][security-tracker-team/security-tracker][master] 3 commits: Add ansible to dla-needed.txt

Fri Jun 14 16:05:01 BST 2019


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
823c11fe by Markus Koschany at 2019-06-14T14:08:00Z
Add ansible to dla-needed.txt

- - - - -
54ae4c7c by Markus Koschany at 2019-06-14T15:02:18Z
Remove vlc from dla-needed.txt

- - - - -
bc116d6a by Markus Koschany at 2019-06-14T15:04:28Z
CVE-2019-5439, vlc is EOL in Jessie

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -119,6 +119,7 @@ CVE-2019-12780 (The Belkin Wemo Enabled Crock-Pot allows command injection in th
 CVE-2019-5439 (A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which  ...)
 	{DSA-4459-1}
 	- vlc 3.0.7-1 (bug #930276)
+	[jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
 	NOTE: https://hackerone.com/reports/484398
 	NOTE: http://www.jbkempf.com/blog/post/2019/VLC-3.0.7-and-security
 CVE-2019-12779 (libqb before 1.0.5 allows local users to overwrite arbitrary files via ...)


=====================================
data/dla-needed.txt
=====================================
@@ -9,6 +9,8 @@ To pick an issue, simply add your name behind it. To learn more about how
 this list is updated have a look at
 https://wiki.debian.org/LTS/Development#Triage_new_security_issues
 
+--
+ansible
 --
 bind9 (Thorsten Alteholz)
   NOTE: 20190512: test package
@@ -135,8 +137,6 @@ tomcat8 (Abhijith PA)
 --
 vim (Emilio)
 --
-vlc (Markus Koschany)
---
 wordpress
   NOTE: 20190614: No upstream fix yet. (apo)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ed1f62d6832ee0b3e0b79e76d89991c02bbd3cd0...bc116d6af2d44cb18e507b3572391a1638cc0699

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ed1f62d6832ee0b3e0b79e76d89991c02bbd3cd0...bc116d6af2d44cb18e507b3572391a1638cc0699
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190614/08bb71a8/attachment.html>
