[Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
jmm at debian.org
Fri Mar 12 22:15:17 GMT 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b680c293 by Moritz Muehlenhoff at 2021-03-12T23:14:59+01:00
buster triage
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -362,6 +362,7 @@ CVE-2016-20009 (** UNSUPPORTED WHEN ASSIGNED ** A DNS client stack-based buffer
NOT-FOR-US: Wind River VxWorks
CVE-2021-28153 (An issue was discovered in GNOME GLib before 2.66.8. When g_file_repla ...)
- glib2.0 2.66.7-2 (bug #984969)
+ [buster] - glib2.0 <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/glib/-/issues/2325
CVE-2021-3435
RESERVED
@@ -28741,6 +28742,7 @@ CVE-2021-0385 (In createConnectToAvailableNetworkNotification of ConnectToNetwor
NOT-FOR-US: Android
CVE-2021-0384 (In read_and_discard_scanlines of jdapistd.c, there is a possible null ...)
- libjpeg-turbo <unfixed> (bug #985082)
+ [buster] - libjpeg-turbo <no-dsa> (Minor issue)
[stretch] - libjpeg-turbo <postponed> (Minor issue)
NOTE: https://github.com/libjpeg-turbo/libjpeg-turbo/issues/470
NOTE: https://github.com/libjpeg-turbo/libjpeg-turbo/commit/6d2e8837b440ce4d8befd805a5abc0d351028d70
=====================================
data/dsa-needed.txt
=====================================
@@ -19,6 +19,8 @@ chromium
knot-resolver
Santiago Ruano Rincón proposed a debdiff for review
--
+libhibernate3-java
+--
linux (carnil)
Wait until more issues have piled up, though try to regulary rebase for point
releases to more recent v4.19.y versions.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b680c293b2f55de6c8f7b8a33ac0e9f14aa7fe3f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b680c293b2f55de6c8f7b8a33ac0e9f14aa7fe3f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210312/22024f69/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list