[Git][security-tracker-team/security-tracker][master] guix/thunderbird DSAs

Mon Apr 22 08:15:15 BST 2024


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f7e52b3b by Moritz Mühlenhoff at 2024-04-22T09:14:16+02:00
guix/thunderbird DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -12824,8 +12824,6 @@ CVE-2024-27900 (Due to missing authorization check, attacker with business user
 	NOT-FOR-US: SAP
 CVE-2024-27297 (Nix is a package manager for Linux and other Unix systems. A fixed-out ...)
 	- guix 1.4.0-6 (bug #1066113)
-	[bookworm] - guix <no-dsa> (Minor issue)
-	[bullseye] - guix <no-dsa> (Minor issue)
 	- nix <unfixed> (bug #1066812)
 	[bookworm] - nix <no-dsa> (Minor issue)
 	[bullseye] - nix <no-dsa> (Minor issue)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,10 @@
+[22 Apr 2024] DSA-5670-1 thunderbird - security update
+	[bullseye] - thunderbird 1:115.10.1-1~deb11u1
+	[bookworm] - thunderbird 1:115.10.1-1~deb12u1
+[22 Apr 2024] DSA-5669-1 guix - security update
+	{CVE-2024-27297}
+	[bullseye] - guix 1.2.0-4+deb11u2
+	[bookworm] - guix 1.4.0-3+deb12u1
 [20 Apr 2024] DSA-5668-1 chromium - security update
 	{CVE-2024-3832 CVE-2024-3833 CVE-2024-3834 CVE-2024-3837 CVE-2024-3838 CVE-2024-3839 CVE-2024-3840 CVE-2024-3841 CVE-2024-3843 CVE-2024-3844 CVE-2024-3845 CVE-2024-3846 CVE-2024-3847}
 	[bookworm] - chromium 124.0.6367.60-1~deb12u1


=====================================
data/dsa-needed.txt
=====================================
@@ -33,9 +33,6 @@ glibc (carnil)
 --
 gpac/oldstable
 --
-guix (jmm)
-  Maintainer has proposed to handle this as DSA, proposed debdiffs
---
 h2o (jmm)
 --
 less (carnil)
@@ -99,8 +96,6 @@ salt/oldstable
 --
 squid
 --
-thunderbird (jmm)
---
 webkit2gtk (berto)
 --
 wpa



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f7e52b3ba0c27a2f06be639da04d8320e75d32d2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f7e52b3ba0c27a2f06be639da04d8320e75d32d2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240422/35e06d14/attachment-0001.htm>
