[Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Add note to nghttp2.

[Mike Gabriel]

Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5f481a85 by Mike Gabriel at 2019-09-30T22:50:53Z
data/dla-needed.txt: Add note to nghttp2.

- - - - -
bfeb0db7 by Mike Gabriel at 2019-09-30T22:51:00Z
re-claim libav

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -52,7 +52,7 @@ imapfilter
 --
 jackson-databind (Markus Koschany)
 --
-libav
+libav (Mike Gabriel)
   NOTE: 20190831: There are currently 19 CVE issues known for libav in jessie,
   NOTE: 20190831: 11 tagged as <no-dsa>. These issues have been triaged, no patch
   NOTE: 20190831: has been found, so far. If you pick libav, be prepared to work
@@ -100,6 +100,9 @@ nfs-utils (Sylvain Beucler)
   NOTE: 20190930: asked plans to package maintainer
 --
 nghttp2 (Mike Gabriel)
+  NOTE: 20190930: nghttp2 in jessie is likely not affected by CVE-2019-95{11,13}.
+  NOTE: 20190930: waiting for feedback from Thorsten and Abhijith as they put
+  NOTE: 20190930: work into the pkg triaging, too. (sunweaver)
 --
 opendmarc (Thorsten Alteholz)
   NOTE: 20190929: testing package



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/a074b312840063f93f62e3983b55b9c49749dbdd...bfeb0db76f24065edc5fb9256c961b93e667a52b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/a074b312840063f93f62e3983b55b9c49749dbdd...bfeb0db76f24065edc5fb9256c961b93e667a52b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190930/a60523f0/attachment-0001.html>