[Git][security-tracker-team/security-tracker][master] Reserve DLA-3800-1 for ruby-rack

Adrian Bunk (@bunk) bunk at debian.org
Mon Apr 29 10:26:31 BST 2024



Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
03883179 by Adrian Bunk at 2024-04-29T12:26:12+03:00
Reserve DLA-3800-1 for ruby-rack

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Apr 2024] DLA-3800-1 ruby-rack - security update
+	{CVE-2024-25126 CVE-2024-26141 CVE-2024-26146}
+	[buster] - ruby-rack 2.0.6-3+deb10u4
 [28 Apr 2024] DLA-3799-1 trafficserver - security update
 	{CVE-2024-31309}
 	[buster] - trafficserver 8.1.7-0+deb10u4


=====================================
data/dla-needed.txt
=====================================
@@ -258,10 +258,6 @@ ring
   NOTE: 20230903: Added by Front-Desk (gladk)
   NOTE: 20230928: will be likely hard to fix see https://lists.debian.org/debian-lts/2023/09/msg00035.html (rouca)
 --
-ruby-rack (Adrian Bunk)
-  NOTE: 20240306: Added by Front-Desk (opal)
-  NOTE: 20240408: waiting for feedback from Debian maintainer (bunk)
---
 runc (dleidert)
   NOTE: 20240312: Added by coordinator (roberto)
   NOTE: 20240314: Several CVEs fixed in LTS remain unfixed (no-dsa) in bullseye.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0388317923da14943723872f5d267e5613c31b01

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0388317923da14943723872f5d267e5613c31b01
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240429/5acbabd9/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list