[Git][security-tracker-team/security-tracker][master] Reserve DLA-3263-1 for libtasn1-6

Mon Jan 9 12:50:06 GMT 2023


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
478c3db0 by Chris Lamb at 2023-01-09T12:49:26+00:00
Reserve DLA-3263-1 for libtasn1-6

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -18832,7 +18832,6 @@ CVE-2021-46849
 CVE-2021-46848 (GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check ...)
 	- libtasn1-6 4.19.0-2
 	[bullseye] - libtasn1-6 4.16.0-2+deb11u1
-	[buster] - libtasn1-6 <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5 (v4.19.0)
 	NOTE: https://gitlab.com/gnutls/libtasn1/-/issues/32
 CVE-2021-46847


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[09 Jan 2023] DLA-3263-1 libtasn1-6 - security update
+	{CVE-2021-46848}
+	[buster] - libtasn1-6 4.13-3+deb10u1
 [05 Jan 2023] DLA-3262-1 smarty3 - security update
 	{CVE-2018-25047}
 	[buster] - smarty3 3.1.33+20180830.1.3a78a21f+selfpack1-1+deb10u2


=====================================
data/dla-needed.txt
=====================================
@@ -141,10 +141,6 @@ libsdl2
 libstb
   NOTE: 20221111: Programming language: C.
 --
-libtasn1-6 (Chris Lamb)
-  NOTE: 20230105: Programming language: C.
-  NOTE: 20230105: Follow fixes from bullseye 11.6 (Beuc/front-desk)
---
 libxstream-java
   NOTE: 20221231: Programming language: Java.
   NOTE: 20221231: VCS: https://salsa.debian.org/lts-team/packages/libxstream-java.git



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/478c3db0b3e30a33f03c2f0455ecc7997e548665

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/478c3db0b3e30a33f03c2f0455ecc7997e548665
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230109/8c5e4de7/attachment.htm>
