[Git][security-tracker-team/security-tracker][master] reserve DLA-1705-1 for sox update
Hugo Lefeuvre
hle at debian.org
Tue Mar 5 17:44:33 GMT 2019
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
41504597 by Hugo Lefeuvre at 2019-03-05T17:44:03Z
reserve DLA-1705-1 for sox update
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[05 Mar 2019] DLA-1705-1 sox - security update
+ {CVE-2017-11332 CVE-2017-11358 CVE-2017-11359 CVE-2017-15371}
+ [jessie] - sox 14.4.1-5+deb8u3
[04 Mar 2019] DLA-1704-1 nss - security update
{CVE-2018-12404 CVE-2018-18508}
[jessie] - nss 2:3.26-1+debu8u4
=====================================
data/dla-needed.txt
=====================================
@@ -90,8 +90,9 @@ qemu
rdflib
NOTE: Maintainer not contacted. Follow the debian bug about status. This should probably be fixed.
--
-sox (Hugo Lefeuvre)
- NOTE: 20190228: remaining cves might deserve a second upload
+sox
+ NOTE: 20190305: CVE-2019-835{4,5,6,7} no upstream patch yet, might take some time.
+ NOTE: Check again later. - hle
--
sqlalchemy
NOTE: 20190226: Patch is quite invasive. (lamby)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/41504597ae04160ca8895dd9e823afbb9c441816
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/41504597ae04160ca8895dd9e823afbb9c441816
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190305/6673d21f/attachment.html>
More information about the debian-security-tracker-commits
mailing list