[Git][security-tracker-team/security-tracker][master] Reserve DLA-2363-1 for asyncpg

[Utkarsh Gupta]

Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker


Commits:
847c393c by Utkarsh Gupta at 2020-09-03T04:18:32+05:30
Reserve DLA-2363-1 for asyncpg

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[03 Sep 2020] DLA-2363-1 asyncpg - security update
+	{CVE-2020-17446}
+	[stretch] - asyncpg 0.8.4-1+deb9u1
 [03 Sep 2020] DLA-2362-1 uwsgi - security update
 	{CVE-2020-11984}
 	[stretch] - uwsgi 2.0.14+20161117-3+deb9u3


=====================================
data/dla-needed.txt
=====================================
@@ -26,10 +26,6 @@ ark (Abhijith PA)
   NOTE: 20200801: though testing with other PoC's available over internet seems exploitable (abhijith)
   NOTE: 20200820: pinged upstream for help (abhijith)
 --
-asyncpg (Utkarsh Gupta)
-  NOTE: 20200815: Minor issue, but easy to fix. (sunweaver)
-  NOTE: 20200831: has already been uploaded to the archive, just sending out the announcement is left. (utkarsh)
---
 cacti
   NOTE: 20200529: A patch need to be cooked up. Upstream patch not fit for jessie version (abhijith)
   NOTE: 20200620: WIP (abhijith)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/847c393c6676c58faccfb20ba6ace5236200da1a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/847c393c6676c58faccfb20ba6ace5236200da1a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200902/f04d847b/attachment.html>