[Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2021-37529 as no-dsa for Stretch
Thorsten Alteholz (@alteholz)
alteholz at debian.org
Thu Jan 20 15:13:35 GMT 2022
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
add2d8ea by Thorsten Alteholz at 2022-01-20T16:13:17+01:00
mark CVE-2021-37529 as no-dsa for Stretch
- - - - -
17318d45 by Thorsten Alteholz at 2022-01-20T16:13:18+01:00
mark CVE-2021-37530 as no-dsa for Stretch
- - - - -
0c8480b0 by Thorsten Alteholz at 2022-01-20T16:13:18+01:00
add libspf2
- - - - -
fbe1c1e9 by Thorsten Alteholz at 2022-01-20T16:13:18+01:00
add aide
- - - - -
f50403b7 by Thorsten Alteholz at 2022-01-20T16:13:18+01:00
add aide
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -30841,6 +30841,7 @@ CVE-2021-37530 (A denial of service vulnerabiity exists in fig2dev through 3.28a
- fig2dev 1:3.2.8b-1
[bullseye] - fig2dev <no-dsa> (Minor issue)
[buster] - fig2dev <no-dsa> (Minor issue)
+ [stretch] - fig2dev <no-dsa> (Minor issue)
- transfig <removed>
NOTE: https://sourceforge.net/p/mcj/tickets/126/
NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/ff103511e49c44c83fc58e2092aa37e9019a3a9f/
@@ -30848,6 +30849,7 @@ CVE-2021-37529 (A double-free vulnerability exists in fig2dev through 3.28a is a
- fig2dev 1:3.2.8b-1
[bullseye] - fig2dev <no-dsa> (Minor issue)
[buster] - fig2dev <no-dsa> (Minor issue)
+ [stretch] - fig2dev <no-dsa> (Minor issue)
- transfig <removed>
NOTE: https://sourceforge.net/p/mcj/tickets/125/
NOTE: https://sourceforge.net/p/mcj/fig2dev/ci/899ea1277387ca9e9853bf61d29b7419d5692691/
=====================================
data/dla-needed.txt
=====================================
@@ -12,6 +12,8 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues
To make it easier to see the entire history of an update, please append notes
rather than remove/replace existing ones.
+--
+aide (Utkarsh)
--
ansible
NOTE: 20210411: As discussed with the maintainer I will update Buster first and
@@ -82,6 +84,8 @@ libraw (Abhijith PA)
NOTE: 20211227: in stretch, plenty other unfixed CVEs (bunk)
NOTE: 20220117: Fixed CVEs other than DLA-1734-1 (abhijith)
--
+libspf2 (Thorsten Alteholz)
+--
linux (Ben Hutchings)
--
linux-4.19 (Ben Hutchings)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d4b83b0b6d98592488a7bb5c1e8f004e8ca05222...f50403b7c75ece8064cfea5f8cc95e5d94fd845e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/d4b83b0b6d98592488a7bb5c1e8f004e8ca05222...f50403b7c75ece8064cfea5f8cc95e5d94fd845e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220120/208cb057/attachment.htm>
More information about the debian-security-tracker-commits
mailing list