[Git][security-tracker-team/security-tracker][master] 2 commits: LTS: add fusiondirectory to dla-needed.txt

Anton Gladky (@gladk) gladk at debian.org
Sat Dec 3 23:04:25 GMT 2022 


Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ba6f0df3 by Anton Gladky at 2022-12-03T22:31:20+01:00
LTS: add fusiondirectory to dla-needed.txt

- - - - -
dd890a05 by Anton Gladky at 2022-12-03T23:44:09+01:00
LTS: add libetpan to dla-needed.txt

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -40,6 +40,13 @@ exiv2
 firmware-nonfree (Markus Koschany)
   NOTE: 20220906: Consider to check the severity of the issues again and judge whether a correction is worth it.
 --
+fusiondirectory
+  NOTE: 20221203: Programming language: PHP.
+  NOTE: 20221203: Please evaluate, whether the package can be fixed (gladk).
+  NOTE: 20221203: Two CVEs have only mitigation, fix in a new version (gladk).
+  NOTE: 20221203: Also the package was removed from sid recently (gladk).
+  NOTE: 20221203: Feel free to marke both CVEs as <ignored>, if they are not too serious (gladk).
+--
 fwupd (Stefano Rivera)
   NOTE: 20221003: Programming language: C++.
 --
@@ -107,6 +114,10 @@ libde265
   NOTE: 20221107: Most vulnerabilities unfixed upstream, but a handful are fixed, and v1.0.9 (2022-10) is a security release (Beuc/front-desk)
   NOTE: 20221107: No prior DSA/DLA/ELA afaics (Beuc/front-desk)
 --
+libetpan
+  NOTE: 20221203: Programming language: C++.
+  NOTE: 20221203: VCS: https://salsa.debian.org/lts-team/packages/libetpan.git
+--
 libreoffice
   NOTE: 20221012: Programming language: C++.
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/51cca91dbdfed80ffe83a94e875befce8d3e704b...dd890a054bb9581b552a2c546f5786631bf7784c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/51cca91dbdfed80ffe83a94e875befce8d3e704b...dd890a054bb9581b552a2c546f5786631bf7784c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221203/9efff438/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list