[Git][security-tracker-team/security-tracker][master] Reserve DLA-2935-1 for expat

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Mon Mar 7 13:31:09 GMT 2022 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5e9d5130 by Emilio Pozuelo Monfort at 2022-03-07T14:30:54+01:00
Reserve DLA-2935-1 for expat

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[07 Mar 2022] DLA-2935-1 expat - security update
+	{CVE-2022-23852 CVE-2022-25235 CVE-2022-25236 CVE-2022-25313 CVE-2022-25315}
+	[stretch] - expat 2.2.0-2+deb9u5
 [07 Mar 2022] DLA-2934-1 freecad - security update
 	{CVE-2021-45844}
 	[stretch] - freecad 0.16+dfsg2-3+deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -29,11 +29,6 @@ debian-archive-keyring (Anton)
   NOTE: 20211018: Jonathan is prepping the branch; will work
   NOTE: 20211018: with him and upload and publish the DLA. (utkarsh)
 --
-expat (Emilio)
-  NOTE: 20220221: please wait for DSA first. (Anton)
-  NOTE: 20220307: updates prepared and tested, but evaluating alternative upstream
-  NOTE: 20220307: change (wip) due to regressions in original fix (pochu)
---
 firmware-nonfree (Markus Koschany)
   NOTE: 20210731: WIP: https://salsa.debian.org/lts-team/packages/firmware-nonfree
   NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e9d5130e57f12b692c0235cf63cf187567084ff

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5e9d5130e57f12b692c0235cf63cf187567084ff
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220307/fd95d2df/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list