[Git][security-tracker-team/security-tracker][master] Reserve DLA-3564-1 for e2guardian

Tue Sep 12 18:45:45 BST 2023


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
00f9afc2 by Chris Lamb at 2023-09-12T10:45:26-07:00
Reserve DLA-3564-1 for e2guardian

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -130721,7 +130721,6 @@ CVE-2021-44274
 CVE-2021-44273 (e2guardian v5.4.x <= v5.4.3r is affected by missing SSL certificate va ...)
 	- e2guardian 5.3.5-3 (bug #1003125)
 	[bullseye] - e2guardian 5.3.4-1+deb11u1
-	[buster] - e2guardian <no-dsa> (Minor issue)
 	[stretch] - e2guardian <ignored> (SSL MITM engine not enabled in stretch)
 	NOTE: https://www.openwall.com/lists/oss-security/2021/12/23/2
 	NOTE: https://github.com/e2guardian/e2guardian/issues/707


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[12 Sep 2023] DLA-3564-1 e2guardian - security update
+	{CVE-2021-44273}
+	[buster] - e2guardian 5.3.1-1+deb10u1
 [12 Sep 2023] DLA-3563-1 samba - security update
 	{CVE-2016-2124 CVE-2019-10218 CVE-2019-14833 CVE-2019-14847 CVE-2019-14902 CVE-2019-14907 CVE-2019-19344}
 	[buster] - samba 2:4.9.5+dfsg-5+deb10u4


=====================================
data/dla-needed.txt
=====================================
@@ -54,10 +54,6 @@ dogecoin
   NOTE: 20230619: also I just referenced 3 older bitcoin-related CVEs to fix;
   NOTE: 20230619: dogecoin not present in bullseye/bookworm, so we lead the initiatives. (Beuc/front-desk)
 --
-e2guardian (Chris Lamb)
-  NOTE: 20230907: Added by Front-Desk (lamby)
-  NOTE: 20230907: CVE-2021-44273 fixed in bullseye via DSA; patch easy to backport. (lamby)
---
 elfutils (Thorsten Alteholz)
   NOTE: 20230903: Added by Front-Desk (gladk)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00f9afc2fcdb117a67e2a74640193983b36527cc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/00f9afc2fcdb117a67e2a74640193983b36527cc
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230912/05141198/attachment-0001.htm>
