[Git][security-tracker-team/security-tracker][master] Reserve DLA-2682-1 for mrxvt

Wed Jun 9 12:01:20 BST 2021


Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9296fce5 by Utkarsh Gupta at 2021-06-09T16:31:11+05:30
Reserve DLA-2682-1 for mrxvt

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[09 Jun 2021] DLA-2682-1 mrxvt - security update
+	{CVE-2021-33477}
+	[stretch] - mrxvt 0.5.4-2+deb9u1
 [09 Jun 2021] DLA-2681-1 eterm - security update
 	{CVE-2021-33477}
 	[stretch] - eterm 0.9.6-5+deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -63,10 +63,6 @@ linux (Ben Hutchings)
 --
 linux-4.19 (Ben Hutchings)
 --
-mrxvt (Utkarsh)
-  NOTE: 20210521: src/command.c:rxvt_process_graphics(), probably just disable vulnerable escape sequence or introduce Opt_insecure
-  NOTE: 20210607: proposed a fix. (utkarsh)
---
 nvidia-graphics-drivers
   NOTE: package is in non-free but also in packages-to-support
   NOTE: only CVE‑2021‑1076 seems to be fixed in the R390 branch used in Stretch, no fix available for CVE-2021-1077



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9296fce5cd2c40336d587d106cc72501c752c301

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9296fce5cd2c40336d587d106cc72501c752c301
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210609/d07d1f81/attachment-0001.htm>
