[Git][security-tracker-team/security-tracker][master] Reserve DLA-2915-1 for connman

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Wed Feb 9 09:42:44 GMT 2022 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
738a4d06 by Emilio Pozuelo Monfort at 2022-02-09T10:42:24+01:00
Reserve DLA-2915-1 for connman

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -43414,7 +43414,6 @@ CVE-2021-33834
 CVE-2021-33833 (ConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based b ...)
 	- connman 1.36-2.2 (bug #989662)
 	[buster] - connman 1.36-2.1~deb10u2
-	[stretch] - connman <no-dsa> (Minor issue)
 	NOTE: https://www.openwall.com/lists/oss-security/2021/06/09/1
 	NOTE: https://git.kernel.org/pub/scm/network/connman/connman.git/commit/?id=eceb2e8d2341c041df55a5e2f047d9a8c491463c
 CVE-2021-33832


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[09 Feb 2022] DLA-2915-1 connman - security update
+	{CVE-2021-33833 CVE-2022-23096 CVE-2022-23097 CVE-2022-23098}
+	[stretch] - connman 1.33-3+deb9u3
 [07 Feb 2022] DLA-2914-1 zabbix - security update
 	{CVE-2022-23134}
 	[stretch] - zabbix 1:3.0.32+dfsg-0+deb9u2


=====================================
data/dla-needed.txt
=====================================
@@ -18,10 +18,6 @@ ansible
   NOTE: 20210411: after that LTS. (apo)
   NOTE: 20210426: https://people.debian.org/~apo/lts/ansible/
 --
-connman (Emilio)
-   NOTE: 20220203: harmonize with buster-10.10 (CVE-2021-33833)
-   NOTE: 20220203: + check new CVEs if patches can be identified (Beuc)
---
 debian-archive-keyring
   NOTE: https://lists.debian.org/debian-lts/2021/08/msg00037.html
   NOTE: 20210920: Raphael answered. will backport today. (utkarsh)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/738a4d0635ed385a8c4b4dbf9b79ea42139a67dc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/738a4d0635ed385a8c4b4dbf9b79ea42139a67dc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220209/b75fc85c/attachment.htm>

More information about the debian-security-tracker-commits mailing list