[Git][security-tracker-team/security-tracker][master] Reserve DLA-3354-1 for kopanocore
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Mon Mar 6 14:43:22 GMT 2023
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c975fd95 by Emilio Pozuelo Monfort at 2023-03-06T15:43:00+01:00
Reserve DLA-3354-1 for kopanocore
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -239871,7 +239871,6 @@ CVE-2019-19908 (phpMyChat-Plus 1.98 is vulnerable to reflected XSS via JavaScrip
NOT-FOR-US: phpMyChat
CVE-2019-19907 (HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core ...)
- kopanocore 8.7.0-6 (bug #947312)
- [buster] - kopanocore <no-dsa> (Minor issue)
NOTE: https://stash.kopano.io/projects/KC/repos/kopanocore/commits/4e02b420fff
CVE-2019-19904
RESERVED
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[06 Mar 2023] DLA-3354-1 kopanocore - security update
+ {CVE-2019-19907 CVE-2022-26562}
+ [buster] - kopanocore 8.7.0-3+deb10u1
[05 Mar 2023] DLA-3353-1 xfig - security update
{CVE-2021-40241}
[buster] - xfig 1:3.2.7a-3+deb10u1
=====================================
data/dla-needed.txt
=====================================
@@ -108,11 +108,6 @@ intel-microcode
NOTE: 20230219: Programming language: Binary blob.
NOTE: 20230219: VCS: https://salsa.debian.org/lts-team/packages/intel-microcode.git
--
-kopanocore (Emilio)
- NOTE: 20220801: Programming language: C++.
- NOTE: 20220811: Proposed a patch to CVE-2022-26562 (#1016973) (gusnan/retired)
- NOTE: 20230206: VCS: https://salsa.debian.org/lts-team/packages/kopanocore.git
---
libapache2-mod-auth-mellon (Utkarsh)
NOTE: 20230105: Programming language: C.
NOTE: 20230105: Follow fixes from bullseye 11.6 (Beuc/front-desk)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c975fd95aded8faff3dedab0368c773945be40f7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c975fd95aded8faff3dedab0368c773945be40f7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230306/5787c2df/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list