[Git][security-tracker-team/security-tracker][master] 2 commits: Unclaim ansible

Mon Nov 11 06:37:10 GMT 2019


Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
906b03ba by Brian May at 2019-11-11T06:36:02Z
Unclaim ansible

CVE-2019-14846: Easy to fix
CVE-2019-14858: Can't find required code to patch
CVE-2019-14864: Can't find required code to patch

Leaving for hopefully somebody who has a better idea how ansible
internals work.

- - - - -
12de6011 by Brian May at 2019-11-11T06:36:43Z
Claiming angular.js

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -18,9 +18,9 @@ ampache (Roberto C. Sánchez)
   NOTE: 20191103: Upstream has provided a patch which does not apply to the version in jessie.
   NOTE: 20191109: Adapted upstream-provided patch to apply to Debian version. Waiting on feedback from upstream. (roberto)
 --
-angular.js
+angular.js (Brian May)
 --
-ansible (Brian May)
+ansible
   NOTE: 20191011: Code appears to be in lib/ansible/callbacks.py in jessie's version. (lamby)
   NOTE: CVE-2019-14846 should be an easy fix.
   NOTE: CVE-2019-14858's upstream patch is too big; fails to work properly. (utkarsh2102)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d1d837e9eb5e56cf8ab6ec403910ed262ac85f0d...12de60117c2672412210e33c2c386a20eadcc91c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d1d837e9eb5e56cf8ab6ec403910ed262ac85f0d...12de60117c2672412210e33c2c386a20eadcc91c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191111/9ee34038/attachment.html>
