[Git][security-tracker-team/security-tracker][master] Add notes for sympa and apache2

Utkarsh Gupta utkarsh at debian.org
Thu Jun 4 09:08:02 BST 2020 


Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker


Commits:
746bd623 by Utkarsh Gupta at 2020-06-04T13:37:54+05:30
Add notes for sympa and apache2

and unclaim them till further confirmation

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -21,10 +21,12 @@ ansible
   NOTE: 20200508: bam: Upstream fix was reverted - https://github.com/ansible/ansible/pull/68983
   NOTE: 20200508: bam: See https://github.com/ansible/ansible/issues/67794
 --
-apache2 (Utkarsh Gupta)
+apache2
   NOTE: 20200501: The problem to solve is this: https://bz.apache.org/bugzilla/show_bug.cgi?id=60251 (Ola)
   NOTE: 20200501: No CVE yet. (Ola)
   NOTE: 20200531: Asking upstream for CVE assignment. (utkarsh)
+  NOTE: 20200604: wating to hear from CVE team for their decision. (utkarsh)
+  NOTE: 20200604: otherwise the patch is ready for upload. (utkarsh)
 --
 bluez (Roberto C. Sánchez)
   NOTE: 20200521: Uploaded backport (version 5.43-2+deb8u1), which now must go through NEW (roberto)
@@ -110,13 +112,16 @@ squid3 (Markus Koschany)
   NOTE: 20200531: Ongoing work on squid3 in Stretch which will be used for Jessie
   NOTE: 20200531: and Stretch.
 --
-sympa (Utkarsh Gupta)
+sympa
   NOTE: 20200525: Incomplete patch. Not the complete patch is made public. (utkarsh)
   NOTE: 20200525: But that is weird, given their announcement. (utkarsh)
   NOTE: 20200525: More discussion about this has been shared on the list. (utkarsh)
   NOTE: 20200525: Anyway, the patch that is made public so far has been uploaded to
   NOTE: 20200525: https://people.debian.org/~utkarsh/jessie-lts/sympa/ (utkarsh)
   NOTE: 20200531: non-public patch received but don't think it should applied (utkarsh)
+  NOTE: 20200604: the upload is ready but has been put on hold for a while. (utkarsh)
+  NOTE: 20200604: the non-public patch is being discussed internally. (utkarsh)
+  NOTE: 20200604: shall process the upload once the confirmation is given. (utkarsh)
 --
 tzdata
   NOTE: 20200514: LTS update must wait on oldstable update first to prevent newer version in LTS (roberto)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/746bd623222341be7e4c6b5064156c43a404dd3f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/746bd623222341be7e4c6b5064156c43a404dd3f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200604/8a94d804/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list