[Git][security-tracker-team/security-tracker][master] Reserve DLA-2091-1 for libjackson-json-java

Fri Jan 31 21:50:23 GMT 2020


Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
26beabef by Adrian Bunk at 2020-01-31T23:49:32+02:00
Reserve DLA-2091-1 for libjackson-json-java

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[31 Jan 2020] DLA-2091-1 libjackson-json-java - security update
+	{CVE-2017-7525 CVE-2017-15095 CVE-2019-10172}
+	[jessie] - libjackson-json-java 1.9.2-3+deb8u1
 [31 Jan 2020] DLA-2090-1 qemu - security update
 	{CVE-2020-7039}
 	[jessie] - qemu 1:2.1+dfsg-12+deb8u13


=====================================
data/dla-needed.txt
=====================================
@@ -39,9 +39,6 @@ libexif
   NOTE: 20200111: Investigated the issue, currently in contact with Ray Essick @google
   NOTE: 20200111: to get access to the reproducer. (hle)
 --
-libjackson-json-java (Adrian Bunk)
-  NOTE: 20200127: work is ongoing
---
 libmatio (Adrian Bunk)
   NOTE: fairly high number of open issues. Not sure why we never had a look at them.
   NOTE: triage work needed, help security team for fixes if needed.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/26beabef5d624ecc7abd69c112dbe7259b3c41f5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/26beabef5d624ecc7abd69c112dbe7259b3c41f5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200131/a4028b9d/attachment.html>
