[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-23336: regroup source packages listing
Salvatore Bonaccorso
carnil at debian.org
Mon Mar 15 18:14:22 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
25c487d7 by Salvatore Bonaccorso at 2021-03-15T19:13:45+01:00
CVE-2021-23336: regroup source packages listing
- - - - -
427c199f by Salvatore Bonaccorso at 2021-03-15T19:13:58+01:00
Revert "LTS: Take CVE-2021-24122 for tomcat8 in stretch"
This reverts commit 820d790ee2b0410450adce2e13b3779564eac941.
As this is an invalid version for unstable.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9836,7 +9836,7 @@ CVE-2021-24123
RESERVED
CVE-2021-24122 (When serving resources from a network location using the NTFS file sys ...)
- tomcat9 9.0.40-1 (unimportant)
- - tomcat8 8.5.54-0 (unimportant)
+ - tomcat8 <removed> (unimportant)
- tomcat7 <removed> (unimportant)
NOTE: https://github.com/apache/tomcat/commit/935fc5582dc25ae10bab6f9d5629ff8d996cb533 (9.0.40)
NOTE: https://github.com/apache/tomcat/commit/920dddbdb981f92e8d5872a4bb126a10af5ca8a9 (8.5.60)
@@ -11623,9 +11623,9 @@ CVE-2021-23336 (The package python/cpython from 0 and before 3.6.13, from 3.7.0
- python3.7 <removed>
[buster] - python3.7 <no-dsa> (Minor issue)
- python3.5 <removed>
- - pypy3 7.3.3+dfsg-3
- python2.7 <unfixed>
[bullseye] - python2.7 <ignored> (Python 2.7 in Bullseye not covered by security support)
+ - pypy3 7.3.3+dfsg-3
NOTE: https://github.com/python/cpython/pull/24297
NOTE: https://github.com/python/cpython/commit/fcbe0cb04d35189401c0c880ebfb4311e952d776 (master)
NOTE: https://github.com/python/cpython/commit/c9f07813ab8e664d8c34413c4fc2d4f86c061a92 (3.9)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/820d790ee2b0410450adce2e13b3779564eac941...427c199fe6160939d9d4731117d4ea56a5e7f0b0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/820d790ee2b0410450adce2e13b3779564eac941...427c199fe6160939d9d4731117d4ea56a5e7f0b0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210315/22b28536/attachment.htm>
More information about the debian-security-tracker-commits
mailing list