[Git][security-tracker-team/security-tracker][master] Reserve DSA number for libraw update

Sat May 27 20:36:22 BST 2023


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d182f617 by Salvatore Bonaccorso at 2023-05-27T21:35:46+02:00
Reserve DSA number for libraw update

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -150492,7 +150492,6 @@ CVE-2021-32142 (Buffer Overflow vulnerability in LibRaw linux/unix v0.20.0 allow
 	{DLA-3433-1}
 	[experimental] - libraw 0.21.1-1
 	- libraw 0.20.2-2.1 (bug #1031790)
-	[bullseye] - libraw <no-dsa> (Minor issue)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/400
 	NOTE: https://github.com/LibRaw/LibRaw/commit/bc3aaf4223fdb70d52d470dae65c5a7923ea2a49 (0.21-Beta1)
 CVE-2021-32141


=====================================
data/DSA/list
=====================================
@@ -4,6 +4,9 @@
 [26 May 2023] DSA-5413-1 sniproxy - security update
 	{CVE-2023-25076}
 	[bullseye] - sniproxy 0.6.0-2+deb11u1
+[27 May 2023] DSA-5412-1 libraw - security update
+	{CVE-2021-32142 CVE-2023-1729}
+	[bullseye] - libraw 0.20.2-1+deb11u1
 [26 May 2023] DSA-5411-1 gpac - security update
 	{CVE-2020-35980 CVE-2021-4043 CVE-2021-21852 CVE-2021-33361 CVE-2021-33363 CVE-2021-33364 CVE-2021-33365 CVE-2021-33366 CVE-2021-36412 CVE-2021-36414 CVE-2021-36417 CVE-2021-40559 CVE-2021-40562 CVE-2021-40563 CVE-2021-40564 CVE-2021-40565 CVE-2021-40566 CVE-2021-40567 CVE-2021-40568 CVE-2021-40569 CVE-2021-40570 CVE-2021-40571 CVE-2021-40572 CVE-2021-40574 CVE-2021-40575 CVE-2021-40576 CVE-2021-40592 CVE-2021-40606 CVE-2021-40608 CVE-2021-40609 CVE-2021-40944 CVE-2021-41456 CVE-2021-41457 CVE-2021-41459 CVE-2021-45262 CVE-2021-45263 CVE-2021-45267 CVE-2021-45291 CVE-2021-45292 CVE-2021-45297 CVE-2021-45760 CVE-2021-45762 CVE-2021-45763 CVE-2021-45764 CVE-2021-45767 CVE-2021-45831 CVE-2021-46038 CVE-2021-46039 CVE-2021-46040 CVE-2021-46041 CVE-2021-46042 CVE-2021-46043 CVE-2021-46044 CVE-2021-46045 CVE-2021-46046 CVE-2021-46047 CVE-2021-46049 CVE-2021-46051 CVE-2022-1035 CVE-2022-1222 CVE-2022-1441 CVE-2022-1795 CVE-2022-2454 CVE-2022-3222 CVE-2022-3957 CVE-2022-4202 CVE-2022-24574 CVE-2022-24577 CVE-2022-24578 CVE-2022-26967 CVE-2022-27145 CVE-2022-27147 CVE-2022-29537 CVE-2022-36190 CVE-2022-36191 CVE-2022-38530 CVE-2022-43255 CVE-2022-45202 CVE-2022-45283 CVE-2022-45343 CVE-2022-47086 CVE-2022-47091 CVE-2022-47094 CVE-2022-47095 CVE-2022-47657 CVE-2022-47659 CVE-2022-47660 CVE-2022-47661 CVE-2022-47662 CVE-2022-47663 CVE-2023-0770 CVE-2023-0818 CVE-2023-0819 CVE-2023-0866 CVE-2023-1448 CVE-2023-1449 CVE-2023-1452 CVE-2023-1654 CVE-2023-2837 CVE-2023-2838 CVE-2023-2839 CVE-2023-2840 CVE-2023-23143 CVE-2023-23144 CVE-2023-23145}
 	[bullseye] - gpac 1.0.1+dfsg1-4+deb11u2


=====================================
data/dsa-needed.txt
=====================================
@@ -28,8 +28,6 @@ linux (carnil)
   Wait until more issues have piled up, though try to regulary rebase for point
   releases to more recent v5.10.y versions
 --
-libraw (carnil)
---
 nbconvert
 --
 netatalk



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d182f6175fbd15a855fa125b947b7aa0ae549e24

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d182f6175fbd15a855fa125b947b7aa0ae549e24
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230527/d693de43/attachment-0001.htm>
