[Git][security-tracker-team/security-tracker][master] Reserve DLA-3057-1 for request-tracker4
Chris Lamb (@lamby)
lamby at debian.org
Thu Jun 23 08:38:07 BST 2022
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9bc04ae4 by Chris Lamb at 2022-06-23T08:37:42+01:00
Reserve DLA-3057-1 for request-tracker4
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -60226,7 +60226,6 @@ CVE-2021-38562 (Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 befor
- request-tracker4 4.4.4+dfsg-3 (bug #995175)
[bullseye] - request-tracker4 4.4.4+dfsg-2+deb11u1
[buster] - request-tracker4 4.4.3-2+deb10u1
- [stretch] - request-tracker4 <no-dsa> (Minor issue)
NOTE: https://github.com/bestpractical/rt/commit/70749bb66cb13dd70bd53340c371038a5f3ca57c (rt-5.0.2)
NOTE: https://github.com/bestpractical/rt/commit/d16f8cf13c2af517ee55a85e7b91a0267477189f (rt-4.4.5)
NOTE: https://github.com/bestpractical/rt/commit/d16f8cf13c2af517ee55a85e7b91a0267477189f (rt-4.2.17)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[23 Jun 2022] DLA-3057-1 request-tracker4 - security update
+ {CVE-2021-38562}
+ [stretch] - request-tracker4 4.4.1-3+deb9u4
[22 Jun 2022] DLA-3056-1 exo - security update
{CVE-2022-32278}
[stretch] - exo 0.10.7-1+deb9u1
=====================================
data/dla-needed.txt
=====================================
@@ -249,10 +249,6 @@ qemu (Abhijith PA)
NOTE: 20220527: a few new CVEs since last DLA, and buster got no updates since 2 years,
NOTE: 20220527: so maybe coordinate to start anticipating the next LTS (Beuc/front-desk)
--
-request-tracker4 (Chris Lamb)
- NOTE: 20220529: Programming language: Perl.
- NOTE: 20220524: Follow buster: harmonize with with Debian 10.11 (1 CVE) (Beuc/front-desk)
---
ring
NOTE: 20220529: Programming language: C++.
NOTE: 20220314: https://people.debian.org/~abhijith/upload/vda/ring_20161221.2.7bd7d91~dfsg1-1+deb9u2.dsc
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9bc04ae42c3d83685880763054fbbab47b42d5e1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9bc04ae42c3d83685880763054fbbab47b42d5e1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220623/7d3c2dd4/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list