[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2023-43665/python-django for buster as postponed.

Chris Lamb (@lamby) lamby at debian.org
Mon Feb 12 17:07:58 GMT 2024 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
16af6287 by Chris Lamb at 2024-02-12T09:05:58-08:00
Mark CVE-2023-43665/python-django for buster as postponed.

- - - - -
ad4521b7 by Chris Lamb at 2024-02-12T09:07:32-08:00
data/dla-needed.txt: Triage ghostscript for buster LTS (CVE-2020-36773)

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -24412,6 +24412,7 @@ CVE-2023-43665 (In Django 3.2 before 3.2.22, 4.1 before 4.1.12, and 4.2 before 4
 	- python-django 3:4.2.6-1 (bug #1053475)
 	[bookworm] - python-django <postponed> (Minor issue, fix along in future update)
 	[bullseye] - python-django <postponed> (Minor issue, fix along in future update)
+	[buster] - python-django <postponed> (Minor issue, fix along in future update)
 	NOTE: https://www.openwall.com/lists/oss-security/2023/10/04/6
 	NOTE: https://www.djangoproject.com/weblog/2023/oct/04/security-releases/
 	NOTE: https://github.com/django/django/commit/17b51094d778b421bb2b3aae0c270894b050455d (main)


=====================================
data/dla-needed.txt
=====================================
@@ -92,6 +92,9 @@ frr (Abhijith PA)
   NOTE: 20231119: Added by Front-Desk (apo)
   NOTE: 20240206: Continuing fixing the remaining issues (abhijith)
 --
+ghostscript
+  NOTE: 20240212: Added by Front-Desk (lamby)
+--
 gnutls28 (guilhem)
   NOTE: 20240122: Added by Front-Desk (Beuc)
   NOTE: 20240122: Incomplete fix for CVE-2023-5981/DLA-3660-1 (Beuc/front-desk)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c641b6873514816ec6cbb82b3131ed10bbd608b2...ad4521b7cf6220762f9059a34a4feed9abbbe867

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c641b6873514816ec6cbb82b3131ed10bbd608b2...ad4521b7cf6220762f9059a34a4feed9abbbe867
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240212/0dc0c80d/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list