[Git][security-tracker-team/security-tracker][master] Reserve DSA number for samba update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Nov 30 12:08:31 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cd387c03 by Salvatore Bonaccorso at 2021-11-30T13:08:04+01:00
Reserve DSA number for samba update
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -80482,7 +80482,6 @@ CVE-2020-25717 [A user on the domain can become root on domain members]
RESERVED
{DSA-5003-1}
- samba 2:4.13.14+dfsg-1
- [buster] - samba <ignored> (Intrusive backport; backport only 'min domain uid' parameter)
NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14556
NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14725
NOTE: https://www.samba.org/samba/security/CVE-2020-25717.html
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[30 Nov 2021] DSA-5015-1 samba - security update
+ {CVE-2020-25717}
+ [buster] - samba 2:4.9.5+dfsg-5+deb10u2
[28 Nov 2021] DSA-5014-1 icu - security update
{CVE-2020-21913}
[buster] - icu 63.1-6+deb10u2
=====================================
data/dsa-needed.txt
=====================================
@@ -46,10 +46,6 @@ rabbitmq-server
--
runc
--
-samba/oldstable (carnil)
- We will likely only address the 'min domain uid' patch, the fixes for the CVEs
- are otherwise quite intrusive.
---
sogo
Maintainer preparing updates
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd387c034cc63daf7804609920c0e815c97d95c3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cd387c034cc63daf7804609920c0e815c97d95c3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211130/0d4d2984/attachment.htm>
More information about the debian-security-tracker-commits
mailing list