[Git][security-tracker-team/security-tracker][master] lts: add notes

[Emilio Pozuelo Monfort]

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ddd6356e by Emilio Pozuelo Monfort at 2020-07-20T10:49:12+02:00
lts: add notes

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -57,6 +57,7 @@ ffmpeg (Adrian Bunk)
   NOTE: 20200707: few days ago, which should fix this and many others. (lamby)
 --
 firefox-esr (Emilio)
+  NOTE: 20200720: working on ESR 78 backport. (Emilio)
 --
 freerdp
   NOTE: 20200510: Vulnerable to at least CVE-2020-11042. (lamby)
@@ -89,6 +90,8 @@ libopenmpt (Utkarsh Gupta)
 libpam-radius-auth (Utkarsh Gupta)
 --
 librsvg (Emilio)
+  NOTE: 20200720: backported patches, then updated to newer upstream (2.40.21).
+  NOTE: 20200720: testing packages and pondering which way to go. (Emilio)
 --
 linux (Ben Hutchings)
 --
@@ -125,6 +128,7 @@ pillow
   NOTE: 20200711: Appears vulnerable to at least CVE-2020-10177, but not CVE-2020-10378. (lamby)
 --
 poppler (Emilio)
+  NOTE: 20200720: wip (Emilio)
 --
 puma
   NOTE: 20200708: Vulnerable to (at least) CVE-2020-11076. (lamby)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ddd6356eb2d13f089d45bc75c39a7cbdf1563ee9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ddd6356eb2d13f089d45bc75c39a7cbdf1563ee9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200720/f25b6c43/attachment-0001.html>