[Git][security-tracker-team/security-tracker][master] reserve DLA-2506-1 for awstats

Sylvain Beucler beuc at debian.org
Wed Dec 23 14:50:24 GMT 2020 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2c3072ee by Sylvain Beucler at 2020-12-23T15:50:05+01:00
reserve DLA-2506-1 for awstats

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[23 Dec 2020] DLA-2506-1 awstats - security update
+	{CVE-2020-29600 CVE-2020-35176}
+	[stretch] - awstats 7.6+dfsg-1+deb9u2
 [23 Dec 2020] DLA-2505-1 spip - security update
 	{CVE-2020-28984}
 	[stretch] - spip 3.1.4-4~deb9u4


=====================================
data/dla-needed.txt
=====================================
@@ -25,12 +25,6 @@ ansible (Markus Koschany)
   NOTE: 20200508: bam: See https://github.com/ansible/ansible/issues/67794
   NOTE: 20201214: apo: I am about to release the first part of the update.
 --
-awstats (Sylvain Beucler)
-  NOTE: 20201209: Reassigning to Sylvain on request. (lamby)
-  NOTE: 20201207: Requested CVE-2020-29600 for #891469 (incomplete fix for CVE-2017-1000501 in 7.7) (Beuc)
-  NOTE: 20201211: Requested CVE-2020-35176 (incomplete fix for the above in 7.8), waiting for upstream feedback (Beuc)
-  NOTE: 20201217: Submitted patch (Beuc)
---
 ceph
   NOTE: 20200707: Vulnerable to at least CVE-2018-14662. (lamby)
   NOTE: 20200707: Some discussion regarding removal <https://lists.debian.org/debian-lts/2020/04/msg00019.html> (lamby)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c3072eee3a3a606e81c9d1a94887f7d02cf13da

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2c3072eee3a3a606e81c9d1a94887f7d02cf13da
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201223/6d5a4972/attachment.html>

More information about the debian-security-tracker-commits mailing list