[Git][security-tracker-team/security-tracker][master] Triage stretch
Abhijith PA
abhijith at debian.org
Fri Jul 31 16:18:46 BST 2020
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
29a58e4c by Abhijith PA at 2020-07-31T20:48:18+05:30
Triage stretch
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -161,6 +161,7 @@ CVE-2020-16119
CVE-2020-16118 (In GNOME Balsa before 2.6.0, a malicious server operator or man in the ...)
- balsa 2.6.0-1
[buster] - balsa <no-dsa> (Minor issue)
+ [stretch] - balsa <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/balsa/-/commit/4e245d758e1c826a01080d40c22ca8706f0339e5
NOTE: https://gitlab.gnome.org/GNOME/balsa/-/issues/23
CVE-2020-16117 (In GNOME evolution-data-server before 3.35.91, a malicious server can ...)
=====================================
data/dla-needed.txt
=====================================
@@ -112,12 +112,17 @@ puma
--
python2.7 (Thorsten Alteholz)
--
+qemu
+--
ruby-kramdown (Abhijith PA)
--
ruby-zip
NOTE: 20200710: Vulnerable to at least CVE-2018-1000544. (lamby)
NOTE: 20200710: Was fixed in jessie LTS via DLA-1467-1. (lamby)
--
+sane-backends
+ NOTE: 20200731: Most issues either fixed or <not-affected> in jessie. (abhijith)
+--
samba (Roberto C. Sánchez)
NOTE: 20200703: Check with security team so that there's no clash for Stretch update. (utkarsh)
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29a58e4c62d1ffabedadc110a203bb3d83d3fa9a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/29a58e4c62d1ffabedadc110a203bb3d83d3fa9a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200731/0cc01db7/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list