[Git][security-tracker-team/security-tracker][master] 3 commits: data/dla-needed.txt: Triage ghostscript for buster LTS (CVE-2023-28879)

Chris Lamb (@lamby) lamby at debian.org
Sat Apr 1 10:39:28 BST 2023 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6b746486 by Chris Lamb at 2023-04-01T10:38:03+01:00
data/dla-needed.txt: Triage ghostscript for buster LTS (CVE-2023-28879)

- - - - -
28765360 by Chris Lamb at 2023-04-01T10:38:22+01:00
data/dla-needed.txt: Claim ghostscript.

- - - - -
6a4bb6ce by Chris Lamb at 2023-04-01T10:38:50+01:00
Triage CVE-2023-24180 in libelfin for buster LTS.

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -14555,6 +14555,7 @@ CVE-2023-24180 (Libelfin v0.3 was discovered to contain an integer overflow in t
 	- libelfin <unfixed> (bug #1033741)
 	[bookworm] - libelfin <no-dsa> (Minor issue)
 	[bullseye] - libelfin <no-dsa> (Minor issue)
+	[buster] - libelfin <no-dsa> (Minor issue)
 	NOTE: https://github.com/aclements/libelfin/issues/75
 CVE-2023-24179
 	RESERVED


=====================================
data/dla-needed.txt
=====================================
@@ -82,6 +82,8 @@ fusiondirectory
   NOTE: 20221203: Feel free to marke both CVEs as <ignored>, if they are not too serious (gladk).
   NOTE: 20230206: VCS: https://salsa.debian.org/lts-team/packages/fusiondirectory.git
 --
+ghostscript (Chris Lamb)
+--
 golang-1.11
   NOTE: 20220916: Programming language: Go.
   NOTE: 20220916: Special attention: limited support; requires rebuilding reverse build dependencies (though recent bullseye updates didn't)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/f3e37e6d875ea57bf2a70b64097e045585786f3e...6a4bb6ceb4abd7f61bdf21bda14f6ff6a0183545

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/f3e37e6d875ea57bf2a70b64097e045585786f3e...6a4bb6ceb4abd7f61bdf21bda14f6ff6a0183545
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230401/5a323314/attachment.htm>

More information about the debian-security-tracker-commits mailing list