[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-23336: regroup source packages listing

Salvatore Bonaccorso carnil at debian.org
Mon Mar 15 18:14:22 GMT 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
25c487d7 by Salvatore Bonaccorso at 2021-03-15T19:13:45+01:00
CVE-2021-23336: regroup source packages listing

- - - - -
427c199f by Salvatore Bonaccorso at 2021-03-15T19:13:58+01:00
Revert "LTS: Take CVE-2021-24122 for tomcat8 in stretch"

This reverts commit 820d790ee2b0410450adce2e13b3779564eac941.

As this is an invalid version for unstable.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9836,7 +9836,7 @@ CVE-2021-24123
 	RESERVED
 CVE-2021-24122 (When serving resources from a network location using the NTFS file sys ...)
 	- tomcat9 9.0.40-1 (unimportant)
-	- tomcat8 8.5.54-0 (unimportant)
+	- tomcat8 <removed> (unimportant)
 	- tomcat7 <removed> (unimportant)
 	NOTE: https://github.com/apache/tomcat/commit/935fc5582dc25ae10bab6f9d5629ff8d996cb533 (9.0.40)
 	NOTE: https://github.com/apache/tomcat/commit/920dddbdb981f92e8d5872a4bb126a10af5ca8a9 (8.5.60)
@@ -11623,9 +11623,9 @@ CVE-2021-23336 (The package python/cpython from 0 and before 3.6.13, from 3.7.0
 	- python3.7 <removed>
 	[buster] - python3.7 <no-dsa> (Minor issue)
 	- python3.5 <removed>
-	- pypy3 7.3.3+dfsg-3
 	- python2.7 <unfixed>
 	[bullseye] - python2.7 <ignored> (Python 2.7 in Bullseye not covered by security support)
+	- pypy3 7.3.3+dfsg-3
 	NOTE: https://github.com/python/cpython/pull/24297
 	NOTE: https://github.com/python/cpython/commit/fcbe0cb04d35189401c0c880ebfb4311e952d776 (master)
 	NOTE: https://github.com/python/cpython/commit/c9f07813ab8e664d8c34413c4fc2d4f86c061a92 (3.9)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/820d790ee2b0410450adce2e13b3779564eac941...427c199fe6160939d9d4731117d4ea56a5e7f0b0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/820d790ee2b0410450adce2e13b3779564eac941...427c199fe6160939d9d4731117d4ea56a5e7f0b0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210315/22b28536/attachment.htm>


More information about the debian-security-tracker-commits mailing list