[Git][security-tracker-team/security-tracker][master] Reserve DLA-3761-1 for spip
Guilhem Moulin (@guilhem)
guilhem at debian.org
Fri Mar 15 14:47:01 GMT 2024
Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bc4c12fc by Guilhem Moulin at 2024-03-15T15:46:34+01:00
Reserve DLA-3761-1 for spip
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -17619,7 +17619,6 @@ CVE-2023-52322 (ecrire/public/assembler.php in SPIP before 4.1.13 and 4.2.x befo
- spip 4.1.13+dfsg-1 (bug #1059331)
[bookworm] - spip 4.1.9+dfsg-1+deb12u4
[bullseye] - spip 3.2.11-3+deb11u10
- [buster] - spip <no-dsa> (Minor issue)
NOTE: https://blog.spip.net/Mise-a-jour-de-maintenance-et-securite-sortie-de-SPIP-4-2-7-SPIP-4-1-13.html?lang=fr
NOTE: https://git.spip.net/spip/spip/commit/e90f5344b8c82711053053e778d38a35e42b7bcb
CVE-2023-7059 (A vulnerability was found in SourceCodester School Visitor Log e-Book ...)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[15 Mar 2024] DLA-3761-1 spip - security update
+ {CVE-2023-52322}
+ [buster] - spip 3.2.4-1+deb10u13
[14 Mar 2024] DLA-3760-1 node-xml2js - security update
{CVE-2023-0842}
[buster] - node-xml2js 0.2.8-1.1+deb11u1~deb10u1
=====================================
data/dla-needed.txt
=====================================
@@ -272,10 +272,6 @@ sendmail
shim
NOTE: 20240306: Added by Front-Desk (opal)
--
-spip (guilhem)
- NOTE: 20240313: Added by Front-Desk (Beuc)
- NOTE: 20240313: Follow fix from bullseye 11.9 (CVE-2023-52322) (Beuc/front-desk)
---
squid
NOTE: 20240109: Added by Front-Desk (apo)
NOTE: 20240109: I ask for another pair of eyes for CVE-2023-5824. The fix
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc4c12fc42916abc7ae9c1b72d3be9a945f47e08
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bc4c12fc42916abc7ae9c1b72d3be9a945f47e08
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240315/c648e9b0/attachment.htm>
More information about the debian-security-tracker-commits
mailing list