[Git][security-tracker-team/security-tracker][master] Reserve DSA number for varnish update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jan 29 21:06:09 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0e78894d by Salvatore Bonaccorso at 2023-01-29T22:05:44+01:00
Reserve DSA number for varnish update

- - - - -


2 changed files:

- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Jan 2023] DSA-5334-1 varnish - security update
+	{CVE-2022-45060}
+	[bullseye] - varnish 6.5.1-1+deb11u3
 [29 Jan 2023] DSA-5333-1 tiff - security update
 	{CVE-2022-1354 CVE-2022-1355 CVE-2022-1622 CVE-2022-1623 CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 CVE-2022-2867 CVE-2022-2868 CVE-2022-2869 CVE-2022-2953 CVE-2022-3570 CVE-2022-3597 CVE-2022-3599 CVE-2022-3627 CVE-2022-3636 CVE-2022-34526 CVE-2022-48281}
 	[bullseye] - tiff 4.2.0-1+deb11u3


=====================================
data/dsa-needed.txt
=====================================
@@ -61,8 +61,6 @@ thunderbird (jmm)
 --
 tiff (aron)
 --
-varnish (carnil)
---
 xrdp
   needs some additional clarification, tentatively DSA worthy
   maybe upgrade to 0.9.21 within bullseye?



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0e78894dedd70d7e8b7794b9f8626b196501a5a4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0e78894dedd70d7e8b7794b9f8626b196501a5a4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230129/b0c36e43/attachment.htm>


More information about the debian-security-tracker-commits mailing list