[Git][security-tracker-team/security-tracker][master] Reserve DLA-2995-1 for smarty3

[Markus Koschany (@apo)]

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3e883e4f by Markus Koschany at 2022-05-05T21:58:41+02:00
Reserve DLA-2995-1 for smarty3

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[05 May 2022] DLA-2995-1 smarty3 - security update
+	{CVE-2021-21408 CVE-2021-29454}
+	[stretch] - smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u5
 [05 May 2022] DLA-2994-1 firefox-esr - security update
 	{CVE-2022-29909 CVE-2022-29911 CVE-2022-29912 CVE-2022-29914 CVE-2022-29916 CVE-2022-29917}
 	[stretch] - firefox-esr 91.9.0esr-1~deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -153,8 +153,6 @@ samba
   NOTE: 20220110: fix applied, but will need a second opinion. (utkarsh)
   NOTE: 20220125: ftbfs, wip. (utkarsh)
 --
-smarty3 (Markus Koschany)
---
 snapd
   NOTE: 20220308: seems vulnerable at least to setup_private_mount,
   NOTE: 20220308: but double check (pochu)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e883e4f255790920d2bda13cea93d04c60d2c80

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3e883e4f255790920d2bda13cea93d04c60d2c80
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220505/ed97d790/attachment-0001.htm>