[Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Correct ordering

Chris Lamb lamby at debian.org
Fri Jun 21 09:25:15 BST 2019 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b5d9a9a1 by Chris Lamb at 2019-06-21T08:24:37Z
data/dla-needed.txt: Correct ordering

- - - - -
8f6ca11d by Chris Lamb at 2019-06-21T08:24:37Z
data/dla-needed.txt: Claim ruby-openid.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -62,6 +62,12 @@ libmatio (Adrian Bunk)
   NOTE: 20190428: older changes seem to also be required for them
   NOTE: 20190609: work is ongoing
 --
+libqb
+  NOTE: 20190616: Upstream patch does not apply at all, but it appears that
+  NOTE: 20190616: package is still vulnerable in ipc_posix_mq.c etc. or
+  NOTE: 20190616: wherever it uses c->pid w/NAME_MAX. (lamby)
+  NOTE: 20190619: See https://lists.debian.org/debian-lts/2019/06/msg00015.html
+--
 libsdl1.2
   NOTE: see libsdl2 entry.
 --
@@ -77,12 +83,6 @@ libspring-java (Roberto C. Sánchez)
   NOTE: 20190527: with patches available
   NOTE: 20190607: Integrated patches for approximately 50% of open CVEs. (roberto)
 --
-libqb
-  NOTE: 20190616: Upstream patch does not apply at all, but it appears that
-  NOTE: 20190616: package is still vulnerable in ipc_posix_mq.c etc. or
-  NOTE: 20190616: wherever it uses c->pid w/NAME_MAX. (lamby)
-  NOTE: 20190619: See https://lists.debian.org/debian-lts/2019/06/msg00015.html
---
 linux (Ben Hutchings)
 --
 linux-4.9 (Ben Hutchings)
@@ -107,7 +107,7 @@ qemu
 --
 rdesktop
 --
-ruby-openid
+ruby-openid (Chris Lamb)
 --
 sdl-image1.2
   NOTE: see libsdl2 entry.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/02ff87fcdbd9868b93a272aa6005e3b0d9d26f96...8f6ca11d81c205ae11b5580b782824e22bcdf224

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/02ff87fcdbd9868b93a272aa6005e3b0d9d26f96...8f6ca11d81c205ae11b5580b782824e22bcdf224
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190621/18c60a21/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list