[Git][security-tracker-team/security-tracker][master] Reserver DLA-3923-1 for php-horde-turba.

[Tobias Frost (@tobi)]

Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ec2eb42f by Tobias Frost at 2024-10-19T12:21:07+02:00
Reserver DLA-3923-1 for php-horde-turba.

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,7 @@
+[19 Oct 2024] DLA-3923-1 php-horde-turba - security update
+	{CVE-2022-30287}
+	[bullseye] - php-horde-turba 4.2.25-5+deb11u1
+	[bookworm] - php-horde-turba 4.2.25-5+deb11u1
 [17 Oct 2024] DLA-3922-1 python-cryptography - security update
 	{CVE-2023-23931 CVE-2023-49083}
 	[bullseye] - python-cryptography 3.3.2-1+deb11u1


=====================================
data/dla-needed.txt
=====================================
@@ -171,7 +171,7 @@ php-horde-turba (tobi)
   NOTE: 20241002: rouca to check EOL'd ckeditor3 -> ckeditor[v4] upgrade path
   NOTE: 20241002: https://lists.debian.org/debian-lts/2024/10/msg00003.html
   NOTE: 20241002: Consider bumping to 2.2.29
-  NOTE: 20241002: CVE-2022-30287 is RCE (Beuc/front-desk)
+  NOTE: 20241019: Targeted fix for RCE (CVE-2022-30287) uploaded, keeping above log to decide for frontdesk if it should remain in dla-needed.
 --
 proftpd-dfsg
   NOTE: 20240815: Added by Front-Desk (Beuc)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec2eb42ff163fcd0f387c2113918f9330cc997fd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ec2eb42ff163fcd0f387c2113918f9330cc997fd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241019/65086bd3/attachment-0001.htm>