[Git][security-tracker-team/security-tracker][master] openjdk-11 DSA

Moritz Muehlenhoff jmm at debian.org
Sun Oct 20 22:32:21 BST 2019



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
20c4bb9e by Moritz Muehlenhoff at 2019-10-20T21:32:01Z
openjdk-11 DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -44727,9 +44727,9 @@ CVE-2019-2960 (Vulnerability in the MySQL Server product of Oracle MySQL (compon
 CVE-2019-2959 (Vulnerability in the Hyperion Financial Reporting product of Oracle Hy ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2958 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java  ...)
-	- openjdk-11 11.0.5+10-1
-	- openjdk-8 8u232-b09-1
-	- openjdk-7 <removed>
+	- openjdk-11 <not-affected> (Apparently specific to Oracle Java)
+	- openjdk-7 <not-affected> (Apparently specific to Oracle Java)
+	- openjdk-8 <not-affected> (Apparently specific to Oracle Java)
 CVE-2019-2957 (Vulnerability in the MySQL Server product of Oracle MySQL (component:  ...)
 	- mysql-5.7 <not-affected> (Only affects MySQL 8)
 CVE-2019-2956 (Vulnerability in the Core RDBMS (jackson-databind) component of Oracle ...)
@@ -44787,9 +44787,9 @@ CVE-2019-2935 (Vulnerability in the Siebel UI Framework product of Oracle Siebel
 CVE-2019-2934 (Vulnerability in the Oracle Hospitality Reporting and Analytics compon ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2933 (Vulnerability in the Java SE, Java SE Embedded product of Oracle Java  ...)
-	- openjdk-11 11.0.5+10-1
-	- openjdk-8 8u232-b09-1
-	- openjdk-7 <removed>
+	- openjdk-11 <not-affected> (Apparently specific to Oracle Java)
+	- openjdk-7 <not-affected> (Apparently specific to Oracle Java)
+	- openjdk-8 <not-affected> (Apparently specific to Oracle Java)
 CVE-2019-2932 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)
 	NOT-FOR-US: Oracle
 CVE-2019-2931 (Vulnerability in the PeopleSoft Enterprise PeopleTools product of Orac ...)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[20 Oct 2019] DSA-4546-1 openjdk-11 - security update
+	{CVE-2019-2894 CVE-2019-2945 CVE-2019-2949 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2977 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999}
+	[buster] - openjdk-11 11_11.0.5+10-1~deb10u1
 [18 Oct 2019] DSA-4545-1 mediawiki - security update
 	{CVE-2019-16738}
 	[stretch] - mediawiki 1:1.27.7-1~deb9u2


=====================================
data/dsa-needed.txt
=====================================
@@ -47,8 +47,6 @@ nss/oldstable (jmm)
 --
 openjdk-8/oldstable (jmm)
 --
-openjdk-11/stable (jmm)
---
 pam-python
 --
 poppler (jmm)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/20c4bb9e250eeb6f727d6f14d4c819b38b026b95

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/20c4bb9e250eeb6f727d6f14d4c819b38b026b95
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191020/016d082a/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list