[Git][security-tracker-team/security-tracker][master] Reserve DLA-3294-1 for libarchive

[Thorsten Alteholz (@alteholz)]

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
172027fc by Thorsten Alteholz at 2023-01-30T19:39:21+01:00
Reserve DLA-3294-1 for libarchive

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44558,7 +44558,6 @@ CVE-2022-36228
 CVE-2022-36227 (In libarchive before 3.6.2, the software does not check for an error a ...)
 	- libarchive 3.6.2-1 (bug #1024669)
 	[bullseye] - libarchive <no-dsa> (Minor issue)
-	[buster] - libarchive <postponed> (Minor issue, clean crash, follow bullseye updates)
 	NOTE: https://github.com/libarchive/libarchive/issues/1754
 	NOTE: https://github.com/libarchive/libarchive/pull/1759
 	NOTE: Fixed by: https://github.com/libarchive/libarchive/commit/bff38efe8c110469c5080d387bec62a6ca15b1a5


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[30 Jan 2023] DLA-3294-1 libarchive - security update
+	{CVE-2022-36227}
+	[buster] - libarchive 3.3.3-4+deb10u3
 [30 Jan 2023] DLA-3293-1 modsecurity-crs - security update
 	{CVE-2018-16384 CVE-2019-13464 CVE-2020-22669 CVE-2021-35368 CVE-2022-39955 CVE-2022-39956 CVE-2022-39957 CVE-2022-39958}
 	[buster] - modsecurity-crs 3.2.3-0+deb10u3



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/172027fc778999160442584d1294b91a4f8520b2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/172027fc778999160442584d1294b91a4f8520b2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230130/a84efe69/attachment.htm>