[Git][security-tracker-team/security-tracker][master] Reserve DLA-2863-1 for firefox-esr

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Wed Dec 29 12:34:11 GMT 2021 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
11c5dc26 by Emilio Pozuelo Monfort at 2021-12-29T13:33:54+01:00
Reserve DLA-2863-1 for firefox-esr

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Dec 2021] DLA-2863-1 firefox-esr - security update
+	{CVE-2021-38503 CVE-2021-38504 CVE-2021-38506 CVE-2021-38507 CVE-2021-38508 CVE-2021-38509 CVE-2021-43534 CVE-2021-43535 CVE-2021-43536 CVE-2021-43537 CVE-2021-43538 CVE-2021-43539 CVE-2021-43541 CVE-2021-43542 CVE-2021-43543 CVE-2021-43545 CVE-2021-43546}
+	[stretch] - firefox-esr 91.4.1esr-1~deb9u1
 [29 Dec 2021] DLA-2862-1 python-gnupg - security update
 	{CVE-2018-12020 CVE-2019-6690}
 	[stretch] - python-gnupg 0.3.9-1+deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -36,11 +36,6 @@ debian-archive-keyring
   NOTE: 20211018: Jonathan is prepping the branch; will work
   NOTE: 20211018: with him and upload and publish the DLA. (utkarsh)
 --
-firefox-esr (Emilio)
-  NOTE: 20211122: blocked on toolchain backports (pochu)
-  NOTE: 20211206: progressing on the toolchain front (pochu)
-  NOTE: 20211220: backport in progress, making it build with python3.5 (pochu)
---
 firmware-nonfree
   NOTE: 20210731: WIP: https://salsa.debian.org/lts-team/packages/firmware-nonfree
   NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11c5dc266f69cdc8b69d4d9dede749eeba8be479

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/11c5dc266f69cdc8b69d4d9dede749eeba8be479
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211229/4c504ca5/attachment.htm>

More information about the debian-security-tracker-commits mailing list