[Git][security-tracker-team/security-tracker][master] Reserve DLA-2432-1 for jupyter-notebook

Wed Nov 4 04:02:38 GMT 2020


Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6ea44261 by Abhijith PA at 2020-11-04T09:32:23+05:30
Reserve DLA-2432-1 for jupyter-notebook

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Nov 2020] DLA-2432-1 jupyter-notebook - security update
+	{CVE-2018-8768 CVE-2018-19351 CVE-2018-21030}
+	[stretch] - jupyter-notebook 4.2.3-4+deb9u1
 [03 Nov 2020] DLA-2431-1 libonig - security update
 	{CVE-2019-13224 CVE-2019-16163 CVE-2019-19012 CVE-2019-19203 CVE-2019-19204 CVE-2019-19246 CVE-2020-26159}
 	[stretch] - libonig 6.1.3-2+deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -79,9 +79,6 @@ guacamole-server (Markus Koschany)
   NOTE: guacamole-client. Backporting the upstream patch seems viable.
   NOTE: release will be this week
 --
-jupyter-notebook (Abhijith PA)
-  NOTE: 20200711: Vulnerable to (at least) CVE-2018-19351. (lamby)
---
 lemonldap-ng
   NOTE: 20200910: Released a DLA for CVE-2020-24660 a few days ago, so could defer. (lamby)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ea442610c164f5f77a9029b0149e309bd303b9d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6ea442610c164f5f77a9029b0149e309bd303b9d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201104/16546343/attachment.html>
