[Git][security-tracker-team/security-tracker][master] dla: give back libstb and add note to recommend waiting for upstream merging of fixes

[Adrian Bunk (@bunk)]

Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abee3c89 by Adrian Bunk at 2023-11-19T23:25:59+02:00
dla: give back libstb and add note to recommend waiting for upstream merging of fixes

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -118,10 +118,13 @@ libreswan
   NOTE: 20230909: all due to code refactoring. I intend to package the version
   NOTE: 20230909: from Bullseye instead as soon as the maintainer uploads the fix. (apo)
 --
-libstb (Adrian Bunk)
+libstb
   NOTE: 20231029: Added by Front-Desk (gladk)
   NOTE: 20231029: A lot of open CVEs. Maybe duplicates.
   NOTE: 20231029: If you take a package, please evaluate it as well as its importance.
+  NOTE: 20221119: None of the new CVE fixes has been reviewed by upstream so far,
+  NOTE: 20221119: and in the past CVE fixes have caused regressions. 
+  NOTE: 20221119: Wait for upstream merge of fixes (and fixing in unstable). (bunk)
 --
 linux (Ben Hutchings)
   NOTE: 20230111: perma-added for LTS package-specific delegation (bwh)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abee3c890fc57b8116f537480d539849c58d6aa1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abee3c890fc57b8116f537480d539849c58d6aa1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231119/a5fe0f07/attachment.htm>