[Git][security-tracker-team/security-tracker][master] dla: add package updates planned by security team before the oldstable->LTS switch

[Sylvain Beucler]

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5ef3c55c by Sylvain Beucler at 2020-07-06T16:56:49+02:00
dla: add package updates planned by security team before the oldstable->LTS switch
Cf. deb5b9dbbc3582d46df280607e6700f551dcb7e3

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -51,10 +51,16 @@ gupnp
 imagemagick (Markus Koschany)
   NOTE: 20200622: Ongoing work
 --
+jruby
+  NOTE: 20200706: all open CVEs were fixed in jessie (Beuc)
+--
 linux (Ben Hutchings)
 --
 linux-4.9 (Ben Hutchings)
 --
+mercurial
+  NOTE: 20200706: all open CVEs were fixed in jessie (Beuc)
+--
 mumble
   NOTE: 20200325: Regression in last upload, forgot to follow up.
   NOTE: 20200325: https://github.com/mumble-voip/mumble/issues/3605 (abhijith)
@@ -67,6 +73,9 @@ net-snmp
 nginx
   NOTE: 20200505: Patch for CVE-2020-11724 appears to be fairly invasive and, alas, no tests. (lamby)
 --
+nss
+  NOTE: 20200706: from dsa-needed.txt: Roberto proposed an update including fixes for CVE-2018-12404 and CVE-2018-18508 (Beuc)
+--
 opendmarc
   NOTE: 20200621: testing package (thorsten)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ef3c55c86749c0e0ffcf00c80bf26c5664145e6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5ef3c55c86749c0e0ffcf00c80bf26c5664145e6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200706/621f256d/attachment-0001.html>