[Git][security-tracker-team/security-tracker][master] Reserve DLA-2638-1 for jackson-databind

Utkarsh Gupta utkarsh at debian.org
Sat Apr 24 21:19:25 BST 2021 


Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker


Commits:
79d86662 by Utkarsh Gupta at 2021-04-25T01:48:59+05:30
Reserve DLA-2638-1 for jackson-databind

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[25 Apr 2021] DLA-2638-1 jackson-databind - security update
+	{CVE-2020-24616 CVE-2020-24750 CVE-2020-35490 CVE-2020-35491 CVE-2020-35728 CVE-2020-36179 CVE-2020-36180 CVE-2020-36181 CVE-2020-36182 CVE-2020-36183 CVE-2020-36184 CVE-2020-36185 CVE-2020-36186 CVE-2020-36187 CVE-2020-36188 CVE-2020-36189 CVE-2021-20190}
+	[stretch] - jackson-databind 2.8.6-1+deb9u9
 [23 Apr 2021] DLA-2637-1 drupal7 - security update
 	[stretch] - drupal7 7.52-2+deb9u15
 [23 Apr 2021] DLA-2636-1 pjproject - security update


=====================================
data/dla-needed.txt
=====================================
@@ -72,10 +72,6 @@ imagemagick
   NOTE: 20210415: Tracker records as vulnerable to CVE-2021-20312, but parts of
   NOTE: 20210415: patch already partly covered; needs investigation. (lamby)
 --
-jackson-databind (Utkarsh)
-  NOTE: 20210419: prepare an update for buster first, then tackle this. (utkarsh)
-  NOTE: 20210419: talk to sec team + maintainer, if they're okay with this. (utkarsh)
---
 jetty9
 --
 linux (Ben Hutchings)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79d86662990ae97c58cf751d34b3c680b4be52ed

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/79d86662990ae97c58cf751d34b3c680b4be52ed
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210424/f863b142/attachment.htm>

More information about the debian-security-tracker-commits mailing list