[Git][security-tracker-team/security-tracker][master] 2 commits: dla: fix dates

[Sylvain Beucler (@beuc)]

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
89e91e6d by Sylvain Beucler at 2022-01-12T10:46:50+01:00
dla: fix dates

- - - - -
e0eab0f1 by Sylvain Beucler at 2022-01-12T10:46:58+01:00
dla: add pillow

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -50,7 +50,7 @@ firmware-nonfree (Markus Koschany)
   NOTE: 20211207: Intend to release this week.
 --
 gdal (Emilio)
-  NOTE: 20210110: vulnerable code for CVE-2021-45943 present in v2.x too (Beuc)
+  NOTE: 20220110: vulnerable code for CVE-2021-45943 present in v2.x too (Beuc)
 --
 ghostscript (Markus Koschany)
 --
@@ -71,7 +71,7 @@ libgit2 (Utkarsh)
   NOTE: 20211116: backports prepped; checking build and smoke-testing package. (utkarsh)
   NOTE: 20211129: readied up everything, using pygit and other wrappers
   NOTE: 20211129: around which the code changed. will upload in the next 2 days. (utkarsh)
-  NOTE: 20210110: waiting on upstream to get feedback. (utkarsh)
+  NOTE: 20220110: waiting on upstream to get feedback. (utkarsh)
 --
 libraw (Abhijith PA)
   NOTE: 20211227: 7 CVEs that were fixed for jessie in  DLA-1734-1 are unfixed
@@ -94,23 +94,25 @@ nvidia-graphics-drivers (Markus Koschany)
 pgbouncer (Christoph Berg)
   NOTE: 20220104: maintainer might want to upload fixed version
 --
+pillow
+--
 pjproject
   NOTE: 20211230: patch available for the no-dsa issue, check its NOTE (pochu)
 --
 python-django (Chris Lamb)
 --
 qt4-x11
-  NOTE: 20210112: 2 SVG CVEs (CVE-2021-45930,CVE-2021-34812) to fix in both qtsvg-opensource-src and qt4-x11 (Beuc)
+  NOTE: 20220112: 2 SVG CVEs (CVE-2021-45930,CVE-2021-34812) to fix in both qtsvg-opensource-src and qt4-x11 (Beuc)
 --
 qtsvg-opensource-src
-  NOTE: 20210112: 2 SVG CVEs (CVE-2021-45930,CVE-2021-34812) to fix in both qtsvg-opensource-src and qt4-x11 (Beuc)
+  NOTE: 20220112: 2 SVG CVEs (CVE-2021-45930,CVE-2021-34812) to fix in both qtsvg-opensource-src and qt4-x11 (Beuc)
 --
 roundcube
 --
 samba (Utkarsh Gupta)
   NOTE: 20211128: WIP https://salsa.debian.org/lts-team/packages/samba/
   NOTE: 20211212: Fix is too large, coordination with ELTS-upload
-  NOTE: 20210110: fix applied, but will need a second opinion. (utkarsh)
+  NOTE: 20220110: fix applied, but will need a second opinion. (utkarsh)
 --
 slurm-llnl (Sylvain Beucler)
   NOTE: 20211229: CVE-2019-12838 is marked "Too intrusive to backport" but was



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5ac399f7f38f2f1d0ee8afbe23484c10fa4c5718...e0eab0f132f0525830d948cc39d39dacd300903d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5ac399f7f38f2f1d0ee8afbe23484c10fa4c5718...e0eab0f132f0525830d948cc39d39dacd300903d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220112/9b3158e8/attachment-0001.htm>