[Git][security-tracker-team/security-tracker][master] 3 commits: Track proposed update for cyrus-imapd via bulleye-pu
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Sep 2 05:46:58 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
21aed507 by Salvatore Bonaccorso at 2021-09-02T06:45:07+02:00
Track proposed update for cyrus-imapd via bulleye-pu
- - - - -
e978ba84 by Salvatore Bonaccorso at 2021-09-02T06:46:07+02:00
Mark cyrus-imapd as no-dsa as goes trough bullseye-pu
- - - - -
bcb17435 by Salvatore Bonaccorso at 2021-09-02T06:46:37+02:00
Drop cyrus-imapd from dsa-needed list
- - - - -
3 changed files:
- data/CVE/list
- data/dsa-needed.txt
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -15439,6 +15439,8 @@ CVE-2021-33583
RESERVED
CVE-2021-33582 (Cyrus IMAP before 3.4.2 allows remote attackers to cause a denial of s ...)
- cyrus-imapd <unfixed> (bug #993433)
+ [bullseye] - cyrus-imapd <no-dsa> (Minor issue; pending fix via point release)
+ [buster] - cyrus-imapd <no-dsa> (Minor issue; can be fixed via point release)
- cyrus-imapd-2.4 <removed>
NOTE: https://cyrus.topicbox.com/groups/announce/T3dde0a2352462975-M1386fc44adf967e072f8df13/cyrus-imap-3-4-2-3-2-8-and-3-0-16-released
NOTE: https://github.com/cyrusimap/cyrus-imapd/commit/0fb658f1727f4446f7f33adcc428ba4c9eeabe3e (master)
=====================================
data/dsa-needed.txt
=====================================
@@ -19,9 +19,6 @@ condor
--
chromium
--
-cyrus-imapd
- Maintainer prepared update for bullseye-security, needs review+ack+asking back for buster
---
djvulibre
--
icu
=====================================
data/next-point-update.txt
=====================================
@@ -30,3 +30,5 @@ CVE-2021-37750
[bullseye] - krb5 1.18.3-6+deb11u1
CVE-2021-36221
[bullseye] - golang-1.15 1.15.15-1~deb11u1
+CVE-2021-33582
+ [bullseye] - cyrus-imapd 3.2.6-2+deb11u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/dce1bd7d8daec759b2602821652271950f8c23a4...bcb17435b68aab0c0c5c1d3133bf312cf022856c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/dce1bd7d8daec759b2602821652271950f8c23a4...bcb17435b68aab0c0c5c1d3133bf312cf022856c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210902/a6d0d75b/attachment.htm>
More information about the debian-security-tracker-commits
mailing list