[Git][security-tracker-team/security-tracker][master] Reserve DLA-2839-1 for gerbv
Anton Gladky (@gladk)
gladk at debian.org
Fri Dec 3 18:45:18 GMT 2021
Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7e5d46cd by Anton Gladky at 2021-12-03T19:45:04+01:00
Reserve DLA-2839-1 for gerbv
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[03 Dec 2021] DLA-2839-1 gerbv - security update
+ {CVE-2021-40391}
+ [stretch] - gerbv 2.6.1-2+deb9u1
[03 Dec 2021] DLA-2838-1 librecad - security update
{CVE-2021-21898 CVE-2021-21899 CVE-2021-21900}
[stretch] - librecad 2.1.2-1+deb9u2
=====================================
data/dla-needed.txt
=====================================
@@ -34,13 +34,6 @@ firmware-nonfree (Markus Koschany)
NOTE: 20210731: WIP: https://salsa.debian.org/lts-team/packages/firmware-nonfree
NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag
--
-gerbv (Anton)
- NOTE: 20211107: The fix has only one-line! But... be sure that the fix will help. (Anton)
- NOTE: 20211107: Please take the package if you can reproduce the issue with valgrind/AddressSanitizer/Leaksanitizer (Anton)
- NOTE: 20211107: The simple fix will unlikely help. (Anton)
- NOTE: 20211121: Still needs to be investigated with extra-tool. (Anton)
- NOTE: 20211128: WIP https://salsa.debian.org/lts-team/packages/gmp/
---
gpac (Roberto C. Sánchez)
NOTE: 20211101: coordinating with secteam for s-p-u since stretch/buster versions match (roberto)
NOTE: 20211120: received OK from secteam for buster update, working on stretch/buster in parallel (roberto)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e5d46cd5707c0092878effdcc631ea4b40cf604
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7e5d46cd5707c0092878effdcc631ea4b40cf604
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211203/a50afff8/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list