[Git][security-tracker-team/security-tracker][master] Reserve DSA number for openssl update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Feb 7 20:59:48 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a67896e6 by Salvatore Bonaccorso at 2023-02-07T21:59:11+01:00
Reserve DSA number for openssl update
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -53735,7 +53735,6 @@ CVE-2022-33759
RESERVED
CVE-2022-2097 (AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimi ...)
- openssl 3.0.5-1 (bug #1023424)
- [bullseye] - openssl <postponed> (Minor issue, fix along in next round of security updates)
[buster] - openssl <postponed> (Minor issue, fix along in next round of security updates)
NOTE: https://www.openssl.org/news/secadv/20220705.txt
NOTE: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=a98f339ddd7e8f487d6e0088d4a9a42324885a93 (openssl-3.0.5)
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[07 Feb 2023] DSA-5343-1 openssl - security update
+ {CVE-2022-2097 CVE-2022-4304 CVE-2022-4450 CVE-2023-0215 CVE-2023-0286}
+ [bullseye] - openssl 1.1.1n-0+deb11u4
[07 Feb 2023] DSA-5342-1 xorg-server - security update
{CVE-2023-0494}
[bullseye] - xorg-server 2:1.20.11-1+deb11u5
=====================================
data/dsa-needed.txt
=====================================
@@ -43,8 +43,6 @@ php-horde-mime-viewer
--
php-horde-turba
--
-openssl (carnil)
---
rails
--
ruby-nokogiri
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a67896e6f391bdf795ffe1b228d72538257b7c9e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a67896e6f391bdf795ffe1b228d72538257b7c9e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230207/6f950b9d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list