[Git][security-tracker-team/security-tracker][master] Stretch triage

Abhijith PA abhijith at debian.org
Tue Mar 2 07:49:35 GMT 2021



Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker


Commits:
15c99ffc by Abhijith PA at 2021-03-02T13:19:11+05:30
Stretch triage

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -3516,6 +3516,7 @@ CVE-2018-25005
 	RESERVED
 CVE-2018-25004 (A user authorized to performing a specific type of query may trigger a ...)
 	- mongodb <removed>
+	[stretch] - mongodb <end-of-life> (https://lists.debian.org/debian-lts/2020/11/msg00058.html)
 	NOTE: https://jira.mongodb.org/browse/SERVER-38275
 CVE-2021-3345 (_gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9. ...)
 	[experimental] - libgcrypt20 1.9.1-1 (bug #981370)
@@ -77569,6 +77570,7 @@ CVE-2020-7930
 	RESERVED
 CVE-2020-7929 (A user authorized to perform database queries may trigger denial of se ...)
 	- mongodb <removed>
+	[stretch] - mongodb <end-of-life> (https://lists.debian.org/debian-lts/2020/11/msg00058.html)
 	NOTE: https://jira.mongodb.org/browse/SERVER-51083
 CVE-2020-7928 (A user authorized to perform database queries may trigger a read overr ...)
 	- mongodb <removed>


=====================================
data/dla-needed.txt
=====================================
@@ -69,6 +69,9 @@ jackson-dataformat-cbor (Abhijith PA)
 libebml (Thorsten Alteholz)
   NOTE: 20210221: testing package
 --
+libupnp
+  NOTE: 20210302: since utkarsh working wpa, might want to handle this as well ? (abhijith)
+--
 linux (Ben Hutchings)
 --
 linux-4.19 (Ben Hutchings)
@@ -132,6 +135,10 @@ spotweb
 subversion (Thorsten Alteholz)
   NOTE: 20210221: solving build problems
 --
+tomcat7
+--
+tomcat8
+--
 wpa (Utkarsh)
 --
 xmlbeans (Roberto C. Sánchez)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/15c99ffcd4b7e27977bae1d8a99f71e9c0a28e67

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/15c99ffcd4b7e27977bae1d8a99f71e9c0a28e67
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210302/ec7f8960/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list