[Git][security-tracker-team/security-tracker][master] Reserve DLA-2952-1 for openssl

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Thu Mar 17 09:43:55 GMT 2022 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cdd7d983 by Emilio Pozuelo Monfort at 2022-03-17T10:43:36+01:00
Reserve DLA-2952-1 for openssl

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -221792,7 +221792,6 @@ CVE-2019-1552 (OpenSSL has internal defaults for a directory tree where it can f
 CVE-2019-1551 (There is an overflow bug in the x64_64 Montgomery squaring procedure u ...)
 	{DSA-4855-1 DSA-4594-1}
 	- openssl 1.1.1e-1 (low; bug #947949)
-	[stretch] - openssl <postponed> (Wait until next upstream security release)
 	[jessie] - openssl <not-affected> (Affected modules are not present in Jessie)
 	- openssl1.0 <removed> (low)
 	NOTE: https://www.openssl.org/news/secadv/20191206.txt


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[17 Mar 2022] DLA-2952-1 openssl - security update
+	{CVE-2019-1551 CVE-2022-0778}
+	[stretch] - openssl 1.1.0l-1~deb9u5
 [17 Mar 2022] DLA-2951-1 flac - security update
 	{CVE-2021-0561}
 	[stretch] - flac 1.3.2-2+deb9u2


=====================================
data/dla-needed.txt
=====================================
@@ -60,8 +60,6 @@ nvidia-graphics-drivers
    NOTE: 20220209: monitor nvidia-graphics-drivers-legacy-390xx for a potential
    NOTE: 20220209: backport (apo)
 --
-openssl (Emilio)
---
 openssl1.0 (Emilio)
 --
 pjproject (Abhijith PA)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cdd7d983cc8377b72685d4f08892937cdd4177b4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cdd7d983cc8377b72685d4f08892937cdd4177b4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220317/48ea5557/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list