[Git][security-tracker-team/security-tracker][master] Reserve DLA-1704-1 for nss

Roberto C. Sánchez roberto at debian.org
Tue Mar 5 02:56:45 GMT 2019 

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3e63d5c5 by Roberto C. Sánchez at 2019-03-05T02:56:20Z
Reserve DLA-1704-1 for nss

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Mar 2019] DLA-1704-1 nss - security update
+	{CVE-2018-12404 CVE-2018-18508}
+	[jessie] - nss 2:3.26-1+debu8u4
 [04 Mar 2019] DLA-1703-1 jackson-databind - security update
 	{CVE-2018-11307 CVE-2018-12022 CVE-2018-12023 CVE-2018-14718 CVE-2018-14719 CVE-2018-14720 CVE-2018-14721 CVE-2018-19360 CVE-2018-19361 CVE-2018-19362}
 	[jessie] - jackson-databind 2.4.2-2+deb8u5


=====================================
data/dla-needed.txt
=====================================
@@ -68,12 +68,6 @@ mysql-connector-python
 nettle (Sylvain Beucler)
   NOTE: 20190119: Prerequisite for gnutls28 being fixed.
 --
-nss (Roberto C. Sánchez)
-  NOTE: 20181212: Bug report not public but it is likely that the package is vulnerable. Maintainer not contacted
-  NOTE: 20181212: yet. Further investigation needed.
-  NOTE: 20181217: Contacted Mozilla security with a request for access to the BZ issue. (roberto)
-  NOTE: 20190121: If you intend to take up this package, please email me and I will provide a detailed summary of what has been done so far. (roberto)
---
 openjdk-7 (Emilio)
   NOTE: 20190304: updating to 7u211
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3e63d5c55df50b6385473d64934c3f0fc7584a8d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3e63d5c55df50b6385473d64934c3f0fc7584a8d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190305/50034f4a/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list