[Git][security-tracker-team/security-tracker][master] Reserve DLA-3800-1 for ruby-rack
Adrian Bunk (@bunk)
bunk at debian.org
Mon Apr 29 10:26:31 BST 2024
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
03883179 by Adrian Bunk at 2024-04-29T12:26:12+03:00
Reserve DLA-3800-1 for ruby-rack
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[29 Apr 2024] DLA-3800-1 ruby-rack - security update
+ {CVE-2024-25126 CVE-2024-26141 CVE-2024-26146}
+ [buster] - ruby-rack 2.0.6-3+deb10u4
[28 Apr 2024] DLA-3799-1 trafficserver - security update
{CVE-2024-31309}
[buster] - trafficserver 8.1.7-0+deb10u4
=====================================
data/dla-needed.txt
=====================================
@@ -258,10 +258,6 @@ ring
NOTE: 20230903: Added by Front-Desk (gladk)
NOTE: 20230928: will be likely hard to fix see https://lists.debian.org/debian-lts/2023/09/msg00035.html (rouca)
--
-ruby-rack (Adrian Bunk)
- NOTE: 20240306: Added by Front-Desk (opal)
- NOTE: 20240408: waiting for feedback from Debian maintainer (bunk)
---
runc (dleidert)
NOTE: 20240312: Added by coordinator (roberto)
NOTE: 20240314: Several CVEs fixed in LTS remain unfixed (no-dsa) in bullseye.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0388317923da14943723872f5d267e5613c31b01
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0388317923da14943723872f5d267e5613c31b01
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240429/5acbabd9/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list