[Git][security-tracker-team/security-tracker][master] Reserve DLA-2111-1 for jackson-databind

[Emilio Pozuelo Monfort]

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86e0fc61 by Emilio Pozuelo Monfort at 2020-02-20T16:32:11+01:00
Reserve DLA-2111-1 for jackson-databind

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[20 Feb 2020] DLA-2111-1 jackson-databind - security update
+	{CVE-2019-20330 CVE-2020-8840}
+	[jessie] - jackson-databind 2.4.2-2+deb8u11
 [19 Feb 2020] DLA-2110-1 netty-3.9 - security update
 	{CVE-2014-0193 CVE-2014-3488 CVE-2019-16869 CVE-2019-20444 CVE-2019-20445 CVE-2020-7238}
 	[jessie] - netty-3.9 3.9.0.Final-1+deb8u1


=====================================
data/dla-needed.txt
=====================================
@@ -24,9 +24,6 @@ ibus
   NOTE: 20191210: See https://bugs.debian.org/941018
   NOTE: 20191210: See https://gitlab.gnome.org/GNOME/glib/merge_requests/1176
 --
-jackson-databind (Emilio)
-  NOTE: 20200105: Can be postponed again. (apo)
---
 libmatio (Adrian Bunk)
   NOTE: fairly high number of open issues. Not sure why we never had a look at them.
   NOTE: triage work needed, help security team for fixes if needed.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/86e0fc61dc8850fe0eb033c804e079a13f8f1d68

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/86e0fc61dc8850fe0eb033c804e079a13f8f1d68
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200220/0a3cf438/attachment-0001.html>