[Git][security-tracker-team/security-tracker][master] dla-needed: remove roundcube
Emilio Pozuelo Monfort
pochu at debian.org
Tue Jul 7 15:12:44 BST 2020
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2fb6828f by Emilio Pozuelo Monfort at 2020-07-07T16:11:59+02:00
dla-needed: remove roundcube
It will be handled by the maintainer via opu.
- - - - -
3 changed files:
- data/CVE/list
- data/dla-needed.txt
- data/next-oldstable-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -72,6 +72,7 @@ CVE-2020-15541 (SolarWinds Serv-U FTP server before 15.2.1 allows remote command
NOT-FOR-US: SolarWinds Serv-U FTP server
CVE-2020-15562 (An issue was discovered in Roundcube Webmail before 1.2.11, 1.3.x befo ...)
- roundcube 1.4.7+dfsg.1-1 (bug #964355)
+ [stretch] - roundcube <no-dsa> (Minor issue; will be fixed via point release)
NOTE: 1.4.x https://github.com/roundcube/roundcubemail/commit/3e8832d029b035e3fcfb4c75839567a9580b4f82
NOTE: 1.3.x https://github.com/roundcube/roundcubemail/commit/19502419757a976dbd55ce5a746610c5bab7896b
NOTE: 1.2.x https://github.com/roundcube/roundcubemail/commit/f3d1566cf223eb04f47b6dfffcd88753f66c36ee
=====================================
data/dla-needed.txt
=====================================
@@ -99,8 +99,6 @@ rails (Sylvain Beucler)
NOTE: 20200706: got regression claim but probably erroneous
NOTE: 20200706: https://lists.debian.org/debian-lts/2020/07/msg00033.html
--
-roundcube
---
ruby-rack (Utkarsh Gupta)
NOTE: probably not affected (parse_cookies_header() is not available in Jessie, but code might hide somewhere else) (thorsten)
--
=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -167,3 +167,5 @@ CVE-2020-1749
[stretch] - linux 4.9.228-1
CVE-2020-0009
[stretch] - linux 4.9.228-1
+CVE-2020-15562
+ [stretch] - roundcube 1.2.3+dfsg.1-4+deb9u6
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fb6828fa3664e15f0791c09000f2959c3000809
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2fb6828fa3664e15f0791c09000f2959c3000809
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200707/325d7def/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list