[Git][security-tracker-team/security-tracker][master] 3 commits: LTS: add 389-ds-base to dla-needed.txt

Ola Lundqvist (@opal) opal at debian.org
Sat Dec 31 13:44:12 GMT 2022 


Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7535cac9 by Ola Lundqvist at 2022-12-31T14:34:02+01:00
LTS: add 389-ds-base to dla-needed.txt

- - - - -
62569b8c by Ola Lundqvist at 2022-12-31T14:36:54+01:00
LTS: add python-oslo.privsep to dla-needed.txt

- - - - -
f224115f by Ola Lundqvist at 2022-12-31T14:43:44+01:00
Marked CVE-2019-25078 as no-dsa for buster. Minor issue.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -4355,6 +4355,7 @@ CVE-2022-4442
 	RESERVED
 CVE-2019-25078 (A vulnerability classified as problematic was found in pacparser up to ...)
 	- pacparser <unfixed> (bug #1026106)
+	[buster] - pacparser <no-dsa> (Minor issue)
 	NOTE: https://github.com/manugarg/pacparser/issues/99
 	NOTE: https://github.com/manugarg/pacparser/commit/853e8f45607cb07b877ffd270c63dbcdd5201ad9 (v1.4.0)
 CVE-2022-47371


=====================================
data/dla-needed.txt
=====================================
@@ -12,6 +12,10 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues
 To make it easier to see the entire history of an update, please append notes
 rather than remove/replace existing ones.
 
+--
+389-ds-base
+  NOTE: 20221231: Programming language: C.
+  NOTE: 20221231: Few users. Low prio. (opal).
 --
 apache2
   NOTE: 20221227: Programming language: C.
@@ -229,6 +233,9 @@ protobuf
 puppet-module-puppetlabs-mysql
   NOTE: 20221107: Programming language: Puppet, Ruby.
 --
+python-oslo.privsep
+  NOTE: 20221231: Programming language: Python.
+--
 qemu
   NOTE: 20221108: Programming language: C.
   NOTE: 20221108: I updated the status of all opened (minor) CVEs to more clearly state whether we can fix or are waiting for a patch,



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/03ff8af06fc4f458fd3bec9af6dced087dc8ce83...f224115fbfa8eca31584ea0d75def9161b4ab7e5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/03ff8af06fc4f458fd3bec9af6dced087dc8ce83...f224115fbfa8eca31584ea0d75def9161b4ab7e5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221231/5e05e039/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list