[Git][security-tracker-team/security-tracker][master] Reserve DLA-1786-1 for qt4-x11

Mike Gabriel sunweaver at debian.org
Tue May 14 06:46:31 BST 2019 


Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e648b007 by Mike Gabriel at 2019-05-14T05:46:07Z
Reserve DLA-1786-1 for qt4-x11

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[14 May 2019] DLA-1786-1 qt4-x11 - security update
+	{CVE-2018-15518 CVE-2018-19869 CVE-2018-19870 CVE-2018-19871 CVE-2018-19873}
+	[jessie] - qt4-x11 4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u2
 [13 May 2019] DLA-1785-1 imagemagick - security update
 	{CVE-2017-9500 CVE-2017-11446 CVE-2017-11523 CVE-2017-11537 CVE-2017-12140 CVE-2017-12430 CVE-2017-12432 CVE-2017-12435 CVE-2017-12563 CVE-2017-12587 CVE-2017-12643 CVE-2017-12670 CVE-2017-12674 CVE-2017-12691 CVE-2017-12692 CVE-2017-12693 CVE-2017-12875 CVE-2017-13133 CVE-2017-13142 CVE-2017-13145 CVE-2017-13658 CVE-2017-13768 CVE-2017-14060 CVE-2017-14172 CVE-2017-14173 CVE-2017-14174 CVE-2017-14175 CVE-2017-14249 CVE-2017-14341 CVE-2017-14400 CVE-2017-14505 CVE-2017-14532 CVE-2017-14624 CVE-2017-14625 CVE-2017-14626 CVE-2017-14739 CVE-2017-14741 CVE-2017-15015 CVE-2017-15017 CVE-2017-15281 CVE-2017-17682 CVE-2017-17914 CVE-2017-18271 CVE-2017-18273 CVE-2017-1000445 CVE-2017-1000476 CVE-2019-9956 CVE-2019-10650 CVE-2019-11597 CVE-2019-11598}
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u16


=====================================
data/dla-needed.txt
=====================================
@@ -104,10 +104,6 @@ python3.4 (Roberto C. Sánchez)
   NOTE: 20190504: Patches integrated for CVE-2018-14647 and CVE-2019-9636
   NOTE: 20190504: Upstream has patched CVE-2019-9947 and CVE-2019-9740 in master, backports are in development (roberto)
 --
-qt4-x11 (Mike Gabriel)
-  NOTE: dla-1627 (Qt5) to apply to Qt4 as well
-  NOTE: CVE-2018-19872 id. while we're at it (minor)
---
 ruby-omniauth
   NOTE: CVE-2015-9284: The vulnerability is rathar bad, especially in combination with other
   NOTE: CVE-2015-9284: known vulnerabilities. However the issue is rather old and the impact



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e648b007bb25403d1c16fbf3661c176111cf5ead

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e648b007bb25403d1c16fbf3661c176111cf5ead
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190514/e436a8c3/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list