[Git][security-tracker-team/security-tracker][master] Reserve DLA-1956-1 for ruby-openid

Fri Oct 11 05:30:27 BST 2019


Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8995e649 by Brian May at 2019-10-11T04:30:11Z
Reserve DLA-1956-1 for ruby-openid

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[11 Oct 2019] DLA-1956-1 ruby-openid - security update
+	{CVE-2019-11027}
+	[jessie] - ruby-openid 2.5.0debian-1+deb8u1
 [10 Oct 2019] DLA-1955-1 tcpdump - security update
 	{CVE-2018-10103 CVE-2018-10105 CVE-2018-14461 CVE-2018-14462 CVE-2018-14463 CVE-2018-14464 CVE-2018-14465 CVE-2018-14466 CVE-2018-14467 CVE-2018-14468 CVE-2018-14469 CVE-2018-14470 CVE-2018-14879 CVE-2018-14880 CVE-2018-14881 CVE-2018-14882 CVE-2018-16227 CVE-2018-16228 CVE-2018-16229 CVE-2018-16230 CVE-2018-16300 CVE-2018-16451 CVE-2018-16452 CVE-2019-15166}
 	[jessie] - tcpdump 4.9.3-1~deb8u1


=====================================
data/dla-needed.txt
=====================================
@@ -125,14 +125,6 @@ radare2
   NOTE: Support status is being discussed at:
   NOTE: https://lists.debian.org/debian-lts/2019/08/msg00064.html
 --
-ruby-openid (Brian May)
-  NOTE: 20190628: In discussion with upstream/rubygems maintainer regarding what the issue actually *is*. (lamby)
-  NOTE: 20190701: Pinged bug (lamby)
-  NOTE: 20190705: Pinged bug (lamby)
-  NOTE: 20190710: I'm at a loss to how to continue persuing this issue (see https://github.com/openid/ruby-openid/issues/122) so returning to the pool. (lamby)
-  NOTE: 20190726: Still unknown how to fix (see aforementioned github issue) (lamby)
-  NOTE: 20190812: Details: https://github.com/openid/ruby-openid/issues/122#issuecomment-520304211
---
 slurm-llnl
   NOTE: 20190814: Contacted security of slurm-llnl for relevant commits (abhijith)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8995e6498cce606c11dbceae84cc764a2ca6900e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8995e6498cce606c11dbceae84cc764a2ca6900e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191011/70c2c9da/attachment-0001.html>
