[Git][security-tracker-team/security-tracker][master] 2 commits: LTS: reclaim condor, update status note

Roberto C. Sánchez roberto at debian.org
Mon Jul 27 13:13:52 BST 2020 


Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
629a2fdd by Roberto C. Sánchez at 2020-07-27T08:12:20-04:00
LTS: reclaim condor, update status note

- - - - -
1f03d4cd by Roberto C. Sánchez at 2020-07-27T08:13:41-04:00
LTS: reclaim mercurial, update status note

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -39,13 +39,14 @@ cimg
 --
 clamav (Emilio)
 --
-condor
+condor (Roberto C. Sánchez)
   NOTE: 20200502: Upstream has only released workarounds; complete fix is still embargoed (roberto)
   NOTE: 20200521: Still embargoed (eg. https://research.cs.wisc.edu/htcondor/security/vulnerabilities/HTCONDOR-2020-0004.html). (lamby)
   NOTE: 20200525: Fix: https://github.com/htcondor/htcondor/compare/V8_8_7...V8_8_8 (utkarsh)
   NOTE: 20200531: Patches are linked from https://security-tracker.debian.org/tracker/CVE-2019-18823 (bunk)
   NOTE: 20200627: Updates prepared (for jessie/stretch/buster); coordinating with security team for testing (roberto)
   NOTE: 20200712: Requested input on path forward from debian-lts at l.d.o (roberto)
+  NOTE: 20200727: Waiting on maintainer feedback: https://lists.debian.org/debian-lts/2020/07/msg00108.html (roberto)
 --
 curl (Thorsten Alteholz)
   NOTE: 20200719: testing package (thorsten)
@@ -93,8 +94,9 @@ linux-4.9 (Ben Hutchings)
 --
 luajit (Thorsten Alteholz)
 --
-mercurial
+mercurial (Roberto C. Sánchez)
   NOTE: 20200706: all open CVEs were fixed in jessie (Beuc)
+  NOTE: 20200720: only one CVE remaining to patch/test (roberto)
 --
 mumble
   NOTE: 20200325: Regression in last upload, forgot to follow up.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/27f5c2950de22f1ce5adba733a0908fbe8d647cd...1f03d4cd91bc7dafab65815f226a573487aef316

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/27f5c2950de22f1ce5adba733a0908fbe8d647cd...1f03d4cd91bc7dafab65815f226a573487aef316
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200727/d71b97b4/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list