[Git][security-tracker-team/security-tracker][master] Reserve DLA-2790-1 for python-babel

Sylvain Beucler (@beuc) beuc at debian.org
Thu Oct 21 08:54:15 BST 2021 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6e4fb9be by Sylvain Beucler at 2021-10-21T09:51:50+02:00
Reserve DLA-2790-1 for python-babel

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[21 Oct 2021] DLA-2790-1 python-babel - security update
+	{CVE-2021-20095 CVE-2021-42771}
+	[stretch] - python-babel 2.3.4+dfsg.1-2+deb9u1
 [20 Oct 2021] DLA-2789-1 squashfs-tools - security update
 	{CVE-2021-41072}
 	[stretch] - squashfs-tools 1:4.3-3+deb9u3


=====================================
data/dla-needed.txt
=====================================
@@ -67,13 +67,6 @@ openssh (Utkarsh)
   NOTE: 20211018: the regression doesn't happen for stretch; looking at
   NOTE: 20211018: the other bit. (utkarsh)
 --
-python-babel (Sylvain Beucler)
-  NOTE: 20210617: CVE-2021-20095 withdrawn, cf. 251b6e33 and #987824 (abhijith)
-  NOTE: 20210620: http://people.debian.org/~abhijith/backport_of_3a700b5.patch (abhijith)
-  NOTE: 20210620: Revisit when it has an assigned CVE ID (abhijith)
-  NOTE: 20211018: No new CVE, asked initial reporter (Beuc)
-  NOTE: 20211018: https://lists.debian.org/debian-lts/2021/10/msg00039.html
---
 python3.5 (Utkarsh)
   NOTE: 20211003: whilst looks like a no-dsa/postponed candidate on a
   NOTE: 20211003: quick look, Canonical issued an update via the ESM



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e4fb9be53b3a574cd5f0e7f426a4f83f32ff88d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6e4fb9be53b3a574cd5f0e7f426a4f83f32ff88d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211021/5611b008/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list