[Git][security-tracker-team/security-tracker][master] 3 commits: LTS: take rustc

Anton Gladky (@gladk) gladk at debian.org
Sat Aug 14 06:39:45 BST 2021 


Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e3454470 by Anton Gladky at 2021-08-14T07:34:22+02:00
LTS: take rustc

- - - - -
f82ca3bb by Anton Gladky at 2021-08-14T07:36:48+02:00
LTS: mark CVE-2020-22019 as not-affected for stretch

- - - - -
cd85432b by Anton Gladky at 2021-08-14T07:39:22+02:00
LTS: unmark CVE-2020-22020 as postponed for stretch

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -70351,12 +70351,12 @@ CVE-2020-22021 (Buffer Overflow vulnerability in FFmpeg 4.2 at filter_edges func
 CVE-2020-22020 (Buffer Overflow vulnerability in FFmpeg 4.2 in the build_diff_map func ...)
 	- ffmpeg 7:4.3-2
 	[buster] - ffmpeg <postponed> (Wait for 4.1.7)
-	[stretch] - ffmpeg <postponed> (Wait for 4.1.7)
 	NOTE: https://trac.ffmpeg.org/ticket/8239
 	NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=ce5274c1385d55892a692998923802023526b765
 CVE-2020-22019 (Buffer Overflow vulnerability in FFmpeg 4.2 at convolution_y_10bit in  ...)
 	- ffmpeg 7:4.3.2-0+deb11u2 (bug #989439)
 	[buster] - ffmpeg <postponed> (Wait for 4.1.7)
+	[stretch] - ffmpeg <not-affected> (Introduced in 4.2)
 	NOTE: https://trac.ffmpeg.org/ticket/8246
 	NOTE: https://trac.ffmpeg.org/ticket/8241
 	NOTE: https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=82ad1b76751bcfad5005440db48c46a4de5d6f02


=====================================
data/dla-needed.txt
=====================================
@@ -85,7 +85,7 @@ ruby-kaminari
 ruby2.3 (Utkarsh Gupta)
   NOTE: 20210802: Utkarsh already uploaded a fix for sid/bullseye. (utkarsh)
 --
-rustc
+rustc (Anton Gladky)
   NOTE: rust-doc in stretch-lts (and jessie-lts) is not installable
   NOTE: https://bugs.debian.org/928422
   NOTE: Perhaps fix with the next rustc update for a new Firefox? (bunk)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ab1187d5b0ce63650fce3efba8230508541fb757...cd85432bcaaf9b6cd447008e812d728968159930

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/ab1187d5b0ce63650fce3efba8230508541fb757...cd85432bcaaf9b6cd447008e812d728968159930
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210814/91f81a9a/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list