[Git][security-tracker-team/security-tracker][master] Reserve DSA number for bind9 update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Sep 22 21:03:19 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f0a4422a by Salvatore Bonaccorso at 2023-09-22T22:02:40+02:00
Reserve DSA number for bind9 update

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -293,6 +293,7 @@ CVE-2023-4504 (Due to failure in validating the length provided by an attacker-c
 	NOTE: Fixed by: https://github.com/OpenPrinting/libppd/commit/262c909ac5b8676d1c221584c5a760e5e83fae66
 CVE-2023-4236 (A flaw in the networking code handling DNS-over-TLS queries may cause  ...)
 	- bind9 1:9.19.17-1 (bug #1052417)
+	[bookworm] - bind9 1:9.18.19-1~deb12u1
 	[bullseye] - bind9 <not-affected> (Vulnerable code introduced later)
 	[buster] - bind9 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://kb.isc.org/docs/cve-2023-4236


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[22 Sep 2023] DSA-5504-1 bind9 - security update
+	{CVE-2023-3341}
+	[bullseye] - bind9 1:9.16.44-1~deb11u1
+	[bookworm] - bind9 1:9.18.19-1~deb12u1
 [20 Sep 2023] DSA-5503-1 netatalk - security update
 	{CVE-2021-31439 CVE-2022-0194 CVE-2022-23121 CVE-2022-23122 CVE-2022-23123 CVE-2022-23124 CVE-2022-23125 CVE-2022-43634 CVE-2022-45188 CVE-2023-42464}
 	[bullseye] - netatalk 3.1.12~ds-8+deb11u1


=====================================
data/dsa-needed.txt
=====================================
@@ -15,9 +15,6 @@ If needed, specify the release by adding a slash after the name of the source pa
 audiofile
   unfixed upstream
 --
-bind9 (carnil)
-  Maintainer prepared updates
---
 cacti
 --
 cinder/oldstable



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0a4422a26af6ee2a2de14ca9661e80bde62e7eb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0a4422a26af6ee2a2de14ca9661e80bde62e7eb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230922/2342371f/attachment.htm>

More information about the debian-security-tracker-commits mailing list