[Git][security-tracker-team/security-tracker][master] Reserve DSA number for samba update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Feb 11 14:38:48 GMT 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
14d0a53a by Salvatore Bonaccorso at 2022-02-11T15:38:19+01:00
Reserve DSA number for samba update
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -3668,6 +3668,7 @@ CVE-2022-0337
CVE-2022-0336 [Samba AD users with permission to write to an account can impersonate arbitrary services]
RESERVED
- samba <unfixed> (bug #1004694)
+ [bullseye] - samba 2:4.13.13+dfsg-1~deb11u3
[buster] - samba <no-dsa> (Minor issue; affects Samba as AD DC)
NOTE: https://www.samba.org/samba/security/CVE-2022-0336.html
NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14950
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[11 Feb 2022] DSA-5071-1 samba - security update
+ {CVE-2021-44142}
+ [buster] - samba 2:4.9.5+dfsg-5+deb10u3
+ [bullseye] - samba 2:4.13.13+dfsg-1~deb11u3
[10 Feb 2022] DSA-5070-1 cryptsetup - security update
{CVE-2021-4122}
[bullseye] - cryptsetup 2:2.3.7-1+deb11u1
=====================================
data/dsa-needed.txt
=====================================
@@ -46,8 +46,6 @@ rpki-client/stable
--
runc
--
-samba (carnil)
---
trafficserver (jmm)
wait until status for CVE-2021-38161 is clarified (upstream patch got reverted)
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/14d0a53ae84ba22f87a35ac33840b2f74648b3aa
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/14d0a53ae84ba22f87a35ac33840b2f74648b3aa
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220211/7693f933/attachment.htm>
More information about the debian-security-tracker-commits
mailing list