[Git][security-tracker-team/security-tracker][master] Reserve DLA-3662-1 for freeimage

[Anton Gladky (@gladk)]

Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker


Commits:
22ea11b5 by Anton Gladky at 2023-11-24T06:51:27+01:00
Reserve DLA-3662-1 for freeimage

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[24 Nov 2023] DLA-3662-1 freeimage - security update
+	{CVE-2020-21427 CVE-2020-21428 CVE-2020-22524}
+	[buster] - freeimage 3.18.0+ds2-1+deb10u2
 [23 Nov 2023] DLA-3661-1 firefox-esr - security update
 	{CVE-2023-6204 CVE-2023-6205 CVE-2023-6206 CVE-2023-6207 CVE-2023-6208 CVE-2023-6209 CVE-2023-6212}
 	[buster] - firefox-esr 115.5.0esr-1~deb10u1


=====================================
data/dla-needed.txt
=====================================
@@ -65,13 +65,6 @@ flatpak
   NOTE: 20231006: Added by Front-Desk (Beuc)
   NOTE: 20231006: Follow fixes from bullseye 11.7 (2 CVEs) (Beuc/front-desk)
 --
-freeimage (gladk)
-  NOTE: 20230826: Added by Front-Desk (utkarsh)
-  NOTE: 20230826: Anton Gladky is the maintainer. Please sync with him about the
-  NOTE: 20230826: about this. Anyway, too many CVEs piled up. I feel we should roll
-  NOTE: 20230826: out the DLA/ELA now. (utkarsh)
-  NOTE: 20231120: many CVEs, check with ASAN is needed. (gladk)
---
 frr
   NOTE: 20231119: Added by Front-Desk (apo)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22ea11b5c0e68482bfcb0169a846d12f3eff2ee2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22ea11b5c0e68482bfcb0169a846d12f3eff2ee2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231124/40ca77c6/attachment-0001.htm>