[Git][security-tracker-team/security-tracker][master] dla: phpseclib,php-phpseclib: update status

Sylvain Beucler (@beuc) beuc at debian.org
Tue Nov 8 11:02:15 GMT 2022 


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
00ea0937 by Sylvain Beucler at 2022-11-08T12:01:58+01:00
dla: phpseclib,php-phpseclib: update status

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -191,7 +191,9 @@ php-cas
 --
 php-phpseclib (Sylvain Beucler)
   NOTE: 20220909: Programming language: PHP.
-  NOTE: 20220909: Note the discussion whether 2.0 is in fact affected by the CVE or not. It looks like it is affected by a small part of it that is best to fix..
+  NOTE: 20220909: Note the discussion whether 2.0 is in fact affected by the CVE or not. It looks like it is affected by a small part of it that is best to fix.. (ola)
+  NOTE: 20221104: Attempted to clarify vulnerability status (cf. 02cd83d1d917dc5964440185226aa11e40058546) (Beuc)
+  NOTE: 20221108: buster is missing testsuite in both phpseclib packages, contacted maintainer to decide whether to backport testsuite or just bump version (Beuc)
 --
 php7.3
   NOTE: 20221031: Programming language: C.
@@ -199,7 +201,9 @@ php7.3
 --
 phpseclib (Sylvain Beucler)
   NOTE: 20220909: Programming language: PHP.
-  NOTE: 20220909: Note the discussion whether 2.0 is in fact affected by the CVE or not. It looks like it is affected by a small part of it that is best to fix..
+  NOTE: 20220909: Note the discussion whether 1.0 is in fact affected by the CVE or not. It looks like it is affected by a small part of it that is best to fix.. (ola)
+  NOTE: 20221104: Attempted to clarify vulnerability status (cf. 02cd83d1d917dc5964440185226aa11e40058546) (Beuc)
+  NOTE: 20221108: buster is missing testsuite in both phpseclib packages, contacted maintainer to decide whether to backport testsuite or just bump version (Beuc)
 --
 pluxml
   NOTE: 20220913: Programming language: PHP.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00ea09374e10b0c8053c5eaf0f3eb6a856eaca00

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00ea09374e10b0c8053c5eaf0f3eb6a856eaca00
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221108/511f9cfe/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list