[Git][security-tracker-team/security-tracker][master] Reserve DLA-3219-1 for jhead

[Markus Koschany (@apo)]

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48c98528 by Markus Koschany at 2022-12-04T14:16:46+01:00
Reserve DLA-3219-1 for jhead

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Dec 2022] DLA-3219-1 jhead - security update
+	{CVE-2021-34055 CVE-2022-41751}
+	[buster] - jhead 1:3.00-8+deb10u1
 [03 Dec 2022] DLA-3218-1 libpgjava - security update
 	{CVE-2022-41946}
 	[buster] - libpgjava 42.2.5-2+deb10u3


=====================================
data/dla-needed.txt
=====================================
@@ -86,11 +86,6 @@ imagemagick (Roberto C. Sánchez)
   NOTE: 20220904: VCS: https://salsa.debian.org/lts-team/packages/imagemagick.git
   NOTE: 20220904: Should be synced with Stretch. (apo)
 --
-jhead (Markus Koschany)
-  NOTE: 20221031: Programming language: C.
-  NOTE: 20221031: Note that multiple options are vulnerable. The attacker have to trick someone to execute the command but arbitrary code exectuion is not good..
-  NOTE: 20221031: It should be stated in the DLA that multiple options are affected..
---
 jqueryui (Markus Koschany)
   NOTE: 20221111: Programming language: JavaScript.
   NOTE: 20221111: Follow fixes from bullseye 11.2 (and jessie/elts) (Beuc/front-desk)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48c985283df376b8a5b8ce9cbb3cca1c269176d0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48c985283df376b8a5b8ce9cbb3cca1c269176d0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221204/5918d667/attachment-0001.htm>