[Git][security-tracker-team/security-tracker][master] 3 commits: Claim erlang in dla-needed.txt
Markus Koschany (@apo)
apo at debian.org
Tue May 9 23:39:20 BST 2023
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4cfc99b3 by Markus Koschany at 2023-05-10T00:32:40+02:00
Claim erlang in dla-needed.txt
- - - - -
e4dcf3e8 by Markus Koschany at 2023-05-10T00:37:11+02:00
Claim golang-websocket in dla-needed.txt
- - - - -
909f006d by Markus Koschany at 2023-05-10T00:38:26+02:00
Reserve DLA-3416-1 for emacs
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[10 May 2023] DLA-3416-1 emacs - security update
+ {CVE-2022-48337 CVE-2022-48339 CVE-2023-28617}
+ [buster] - emacs 1:26.1+1-3.2+deb10u4
[05 May 2023] DLA-3415-1 python-django - security update
{CVE-2023-31047}
[buster] - python-django 1:1.11.29-1+deb10u8
=====================================
data/dla-needed.txt
=====================================
@@ -35,16 +35,10 @@ docker.io
NOTE: 20230320: VCS: https://salsa.debian.org/lts-team/packages/docker.io.git
NOTE: 20230424: Is in preparation.
--
-emacs (Markus Koschany)
- NOTE: 20230223: Programming language: Lisp.
- NOTE: 20230223: VCS: https://salsa.debian.org/lts-team/packages/emacs.git
- NOTE: 20230228: Waiting for confirmation that CVE-2022-48337 regression
- NOTE: 20230228: is fixed. (bunk)
---
epiphany-browser (Adrian Bunk)
NOTE: 20230423: Programming language: C.
--
-erlang
+erlang (Markus Koschany)
NOTE: 20221119: Programming language: Erlang.
NOTE: 20221119: at least CVE-2022-37026 needs to be fixed (original request has been for Stretch)
NOTE: 20230111: VCS: https://salsa.debian.org/erlang-team/packages/erlang
@@ -66,7 +60,7 @@ golang-go.crypto
NOTE: 20220915: Special attention: also check bullseye status
NOTE: 20230206: VCS: https://salsa.debian.org/lts-team/packages/golang-go.crypto.git
--
-golang-websocket
+golang-websocket (Markus Koschany)
NOTE: 20220915: Programming language: Go.
NOTE: 20220915: 1 CVE fixed in stretch and bullseye (golang-github-gorilla-websocket) (Beuc/front-desk)
NOTE: 20220915: Special attention: limited support; requires rebuilding reverse dependencies
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/6bd1de91f4429bef3c7af49aa72642dd2f69d7b3...909f006d07310970f0703e9c1b466f4c3cd6b44e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/6bd1de91f4429bef3c7af49aa72642dd2f69d7b3...909f006d07310970f0703e9c1b466f4c3cd6b44e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230509/92bbf3c5/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list