[Git][security-tracker-team/security-tracker][master] 3 commits: Add expat to dla-needed.txt
Markus Koschany (@apo)
apo at debian.org
Thu Oct 27 17:16:57 BST 2022
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
06e7cc80 by Markus Koschany at 2022-10-27T18:05:46+02:00
Add expat to dla-needed.txt
- - - - -
d4e9c895 by Markus Koschany at 2022-10-27T18:06:58+02:00
Add dropbear to dla-needed.txt
- - - - -
257634c3 by Markus Koschany at 2022-10-27T18:16:25+02:00
Add graphicsmagick to dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -33,10 +33,16 @@ curl (Emilio)
NOTE: 20220904: VCS: https://salsa.debian.org/lts-team/packages/curl.git
NOTE: 20220904: Special attention: high popcon!.
--
+dropbear
+ NOTE: 20221027: Programming language: C.
+--
exiv2
NOTE: 20220819: Programming language: C++.
NOTE: 20220819: https://github.com/Exiv2/exiv2/commit/109d5df7abd329f141b500c92a00178d35a6bef3#diff-bd28aafd4c87975a3a236af74c2200db447587fa0bb4f43ba9beb98738c77b2aL292 does not directly apply, but a very quick glance suggests the earlier code may be equally vulnerable. (Chris Lamb)
--
+expat
+ NOTE: 20221027: Programming language: C.
+--
firmware-nonfree
NOTE: 20220906: Consider to check the severity of the issues again and judge whether a correction is worth it.
--
@@ -73,6 +79,9 @@ golang-websocket
NOTE: 20220915: 1 CVE fixed in stretch and bullseye (golang-github-gorilla-websocket) (Beuc/front-desk)
NOTE: 20220915: Special attention: limited support; requires rebuilding reverse dependencies
--
+graphicsmagick
+ NOTE: 20221027: Programming language: C.
+--
imagemagick (gladk)
NOTE: 20220904: Programming language: C.
NOTE: 20220904: VCS: https://salsa.debian.org/lts-team/packages/imagemagick.git
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/92d3b469317cb0a0f5f00aabf5ff51e1bfd9175d...257634c3285ad3cb989508e20d4703e596835672
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/92d3b469317cb0a0f5f00aabf5ff51e1bfd9175d...257634c3285ad3cb989508e20d4703e596835672
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221027/3d50e521/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list