[Git][security-tracker-team/security-tracker][master] 2 commits: LTS: Mark CVE-2022-24986 as ingored for stretch

Anton Gladky (@gladk) gladk at debian.org
Sat Mar 12 20:09:13 GMT 2022 


Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9d3766dd by Anton Gladky at 2022-03-12T21:08:33+01:00
LTS: Mark CVE-2022-24986 as ingored for stretch

- - - - -
8a5f2709 by Anton Gladky at 2022-03-12T21:08:58+01:00
LTS: drop kcron from dla-needed

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -5150,6 +5150,7 @@ CVE-2022-24986 (KDE KCron through 21.12.2 uses a temporary file in /tmp when sav
 	- kcron 4:21.12.3-1
 	[bullseye] - kcron <no-dsa> (Minor issue)
 	[buster] - kcron <no-dsa> (Minor issue)
+	[stretch] - kcron <ignored> (Minor issue, too intrusive to backport)
 	NOTE: https://www.openwall.com/lists/oss-security/2022/02/25/3
 	NOTE: https://invent.kde.org/system/kcron/-/commit/ef4266e3d5ea741c4d4f442a2cb12a317d7502a1
 	NOTE: https://invent.kde.org/system/kcron/-/merge_requests/14 (followup fix)


=====================================
data/dla-needed.txt
=====================================
@@ -48,9 +48,6 @@ gpac (Roberto C. Sánchez)
 intel-microcode
   NOTE: 20220213: please recheck
 --
-kcron (Anton)
-  NOTE: 20220227: please check, whether the CVE is applicable (Anton)
---
 kicad
 --
 libarchive (Thorsten Alteholz)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cd9268a21115544dde3e2a787d00ae4447e41796...8a5f27099c3235c6d97451a6898c97babd1c09f0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/cd9268a21115544dde3e2a787d00ae4447e41796...8a5f27099c3235c6d97451a6898c97babd1c09f0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220312/7873d7c3/attachment.htm>

More information about the debian-security-tracker-commits mailing list