[Git][security-tracker-team/security-tracker][master] 3 commits: Claim wordpress in dla-needed.txt

Sun Jun 18 16:55:46 BST 2023


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dd54db9e by Markus Koschany at 2023-06-18T17:50:08+02:00
Claim wordpress in dla-needed.txt

- - - - -
f43d96eb by Markus Koschany at 2023-06-18T17:52:42+02:00
CVE-2023-28709,tomcat10: bookworm,postponed

Fix when more important issues arise

- - - - -
4b955102 by Markus Koschany at 2023-06-18T17:54:54+02:00
CVE-2023-28709,tomcat10: fixed in unstable with version 10.1.10-1

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -12079,7 +12079,8 @@ CVE-2023-1552 (ToolboxST prior to version 7.10 is affected by a deserialization
 	NOT-FOR-US: ToolboxST
 CVE-2023-28709 (The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2  ...)
 	[experimental] - tomcat10 10.1.8-1
-	- tomcat10 <unfixed>
+	- tomcat10 10.1.10-1
+	-[bookworm] - tomcat10 <postponed> (Fix when more important issues arise)
 	- tomcat9 <not-affected> (Incomplete fix for CVE-2023-24998 not applied)
 	NOTE: https://github.com/apache/tomcat/commit/ba848da71c523d94950d3c53c19ea155189df9dc (10.1.8)
 	NOTE: https://github.com/apache/tomcat/commit/fbd81421629afe8b8a3922d59020cde81caea861 (9.0.74)


=====================================
data/dla-needed.txt
=====================================
@@ -219,7 +219,7 @@ webkit2gtk (Emilio)
   NOTE: 20230606: one issue remaining (cmake), but call for testing sent out already:
   NOTE: 20230606: https://lists.debian.org/debian-lts/2023/06/msg00005.html (pochu)
 --
-wordpress
+wordpress (Markus Koschany)
   NOTE: 20230614: Added by Front-Desk (opal)
 --
 xmltooling (Santiago)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5cbb107a75d058f9435c189b6ab0ff468c3e11c3...4b9551028d80b5e9abc4920f54d2906af60f186d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/5cbb107a75d058f9435c189b6ab0ff468c3e11c3...4b9551028d80b5e9abc4920f54d2906af60f186d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230618/fbf1fb90/attachment.htm>
