[Git][security-tracker-team/security-tracker][master] Reserve DLA-3485-1 for php-cas

Tobias Frost (@tobi) tobi at debian.org
Sat Jul 8 14:44:07 BST 2023 


Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7cb69a47 by Tobias Frost at 2023-07-08T15:43:53+02:00
Reserve DLA-3485-1 for php-cas

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[08 Jul 2023] DLA-3485-1 php-cas - security update
+	{CVE-2022-39369}
+	[buster] - php-cas 1.3.6-1+deb10u1
 [08 Jul 2023] DLA-3484-1 firefox-esr - security update
 	{CVE-2023-37201 CVE-2023-37202 CVE-2023-37207 CVE-2023-37208 CVE-2023-37211}
 	[buster] - firefox-esr 102.13.0esr-1~deb10u1


=====================================
data/dla-needed.txt
=====================================
@@ -142,14 +142,6 @@ openjdk-11 (Emilio)
   NOTE: 20230612: sid updated, preparing backport (pochu)
   NOTE: 20230627: waiting for DSA (pochu)
 --
-php-cas (tobi)
-  NOTE: 20221105: Added by Front-Desk (ola)
-  NOTE: 20221105: The fix is not backwards compatible. Should be investigated further whether this issue should be solved or ignored.. (ola)
-  NOTE: 20221107: php-cas only has 2 reverse-deps in buster (fusiondirectory, ocsinventory-reports),
-  NOTE: 20221107: consider fixing all 3 packages; also check situation in ELTS for reference (Beuc/front-desk)
-  NOTE: 20221110: a DSA is planned (Beuc/front-desk)
-  NOTE: 20230627: WIP See: https://lists.debian.org/debian-lts/2023/06/msg00058.html (tobi)
---
 php-dompdf (rouca)
   NOTE: 20230618: Added by Front-Desk (opal)
   NOTE: 20230618: Low priority but higher than to not fix it.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7cb69a47a8ada970d7573cdd3ba9824498e17d14

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7cb69a47a8ada970d7573cdd3ba9824498e17d14
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230708/ddc07a11/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list