[Git][security-tracker-team/security-tracker][master] 2 commits: lts-cve-triage.py: handle /stable /oldstable notations in dsa-needed.txt

Sylvain Beucler (@beuc) beuc at debian.org
Sat Apr 2 15:26:49 BST 2022 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
996cf01d by Sylvain Beucler at 2022-04-02T16:24:57+02:00
lts-cve-triage.py: handle /stable /oldstable notations in dsa-needed.txt
e.g. twig/oldstable

- - - - -
e85386b7 by Sylvain Beucler at 2022-04-02T16:26:28+02:00
dla: add twig

- - - - -


2 changed files:

- bin/lts-cve-triage.py
- data/dla-needed.txt


Changes:

=====================================
bin/lts-cve-triage.py
=====================================
@@ -128,7 +128,9 @@ for pkg in tracker.iterate_packages():
                     continue
 
                 if status_in_next_lts.status == 'open':
-                    if pkg in tracker.dsa_needed:
+                    if (pkg in tracker.dsa_needed or
+                        pkg+'/stable' in tracker.dsa_needed or
+                        pkg+'/oldstable' in tracker.dsa_needed):
                         add_to_list('triage_already_in_dsa_needed', pkg, issue)
                     else:
                         add_to_list('triage_other_not_triaged_in_next_lts',


=====================================
data/dla-needed.txt
=====================================
@@ -145,8 +145,11 @@ sox
 --
 tiff (Utkarsh)
 --
+twig
+  NOTE: 20220402: cf. DSA-5107-1; similar code in lib/Twig/Extension/Core.php (Beuc)
+--
 unzip
- NOTE: 20220319: no patches yet but reproducible (apo)
+  NOTE: 20220319: no patches yet but reproducible (apo)
 --
 usbguard (Markus Koschany)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2c77b640c6d2c44166b91fa1cde989cf63146a02...e85386b771a265a19ad7b72e571183f40489b900

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2c77b640c6d2c44166b91fa1cde989cf63146a02...e85386b771a265a19ad7b72e571183f40489b900
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220402/e9caf4f4/attachment.htm>

More information about the debian-security-tracker-commits mailing list