[Git][security-tracker-team/security-tracker][master] Give up on subversion, annotating with partial results
Enrico Zini (@enrico)
enrico at debian.org
Sun May 1 15:28:25 BST 2022
Enrico Zini pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5cd9fc5e by Enrico Zini at 2022-05-01T16:28:14+02:00
Give up on subversion, annotating with partial results
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -165,9 +165,10 @@ sox
NOTE: 20220326: CVE-2019-13590 is fixed in git (Anton)
NOTE: 20220326: fix for CVE-2021-40426 is not yet available (Anton)
--
-subversion (enrico)
+subversion
NOTE: 20220422: Upstream's patch for CVE-2021-28544 does not cleanly apply (eg. "copyfrom_path = apr_pstrdup(...)" assignment)
NOTE: 20220422: and, once applied manually, appears to break multiple and possibly unrelated parts of the testsuite. (lamby)
+ NOTE: 20220501: Done some analysis, worked on a patch, cannot find a way to test it, mailed results to Roberto C. Sánchez (enrico)
--
tiff (Utkarsh)
NOTE: 20220404: jessie upload at https://salsa.debian.org/lts-team/packages/tiff.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cd9fc5efc89cd74e13667722bc1c864d086c5c2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5cd9fc5efc89cd74e13667722bc1c864d086c5c2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220501/80dbceb4/attachment.htm>
More information about the debian-security-tracker-commits
mailing list