[Git][security-tracker-team/security-tracker][master] mbedtls fixed in experimental

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
803c20a6 by Moritz Muehlenhoff at 2022-01-14T14:46:38+01:00
mbedtls fixed in experimental
add prosody to dsa-needed

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -7626,6 +7626,7 @@ CVE-2021-44733 (A use-after-free exists in drivers/tee/tee_shm.c in the TEE subs
 	[stretch] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2030747
 CVE-2021-44732 (Mbed TLS before 3.0.1 has a double free in certain out-of-memory condi ...)
+	[experimental] - mbedtls 2.28.0-0.1
 	- mbedtls <unfixed> (bug #1002631)
 	NOTE: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2021-12
 	NOTE: https://github.com/ARMmbed/mbedtls/commit/eb490aabf6a9f47c074ec476d0d4997c2362cdbc (mbedtls-2.16.12)


=====================================
data/dsa-needed.txt
=====================================
@@ -34,6 +34,8 @@ ndpi/oldstable
 --
 nodejs (jmm)
 --
+prosody (jmm)
+--
 puppetdb (jmm)
 --
 python-pysaml2 (jmm)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/803c20a6fa57ffbdbde0b7eadb7126a1196621cb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/803c20a6fa57ffbdbde0b7eadb7126a1196621cb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220114/bdb04d0c/attachment.htm>