[Git][security-tracker-team/security-tracker][master] Reserve DLA-3598-1 for libvpx

Emilio Pozuelo Monfort (@pochu) pochu at debian.org
Sun Oct 1 21:10:57 BST 2023 


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
569711cf by Emilio Pozuelo Monfort at 2023-10-01T22:10:18+02:00
Reserve DLA-3598-1 for libvpx

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -7047,7 +7047,7 @@ CVE-2023-39417 (IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found
 	- postgresql-13 <removed>
 	[bullseye] - postgresql-13 <postponed> (Minor issue, fix along with next round of updates)
 	- postgresql-11 <removed>
-	[buster] - postgresql-11 <no-dsa> (Minor issue)	
+	[buster] - postgresql-11 <no-dsa> (Minor issue)
 	NOTE: https://www.postgresql.org/support/security/CVE-2023-39417/
 	NOTE: https://www.postgresql.org/about/news/postgresql-154-149-1312-1216-1121-and-postgresql-16-beta-3-released-2689/
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=de494ec14f6bd7f2676623a5934723a6c8ba51c2 (REL_15_4)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[01 Oct 2023] DLA-3598-1 libvpx - security update
+	{CVE-2023-5217 CVE-2023-44488}
+	[buster] - libvpx 1.7.0-3+deb10u2
 [01 Oct 2023] DLA-3597-1 open-vm-tools - security update
 	{CVE-2023-20900}
 	[buster] - open-vm-tools 2:10.3.10-1+deb10u5


=====================================
data/dla-needed.txt
=====================================
@@ -92,9 +92,6 @@ libreswan
   NOTE: 20230909: all due to code refactoring. I intend to package the version
   NOTE: 20230909: from Bullseye instead as soon as the maintainer uploads the fix. (apo)
 --
-libvpx (Emilio)
-  NOTE: 20231001: Added by pochu
---
 linux (Ben Hutchings)
   NOTE: 20230111: perma-added for LTS package-specific delegation (bwh)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/569711cf59c05c781d8d822786e8d68232c299ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/569711cf59c05c781d8d822786e8d68232c299ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231001/63ba8293/attachment.htm>

More information about the debian-security-tracker-commits mailing list