[Git][security-tracker-team/security-tracker][master] Reserve DLA-3892-1 for tinyproxy

Thorsten Alteholz (@alteholz) alteholz at debian.org
Wed Sep 18 22:14:03 BST 2024 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7b8061e2 by Thorsten Alteholz at 2024-09-18T23:11:32+02:00
Reserve DLA-3892-1 for tinyproxy

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -161990,7 +161990,6 @@ CVE-2022-40469 (iKuai OS v3.6.7 was discovered to contain an authenticated remot
 	NOT-FOR-US: iKuai8
 CVE-2022-40468 (Potential leak of left-over heap data if custom error page templates c ...)
 	- tinyproxy 1.11.1-2 (bug #1021015)
-	[bullseye] - tinyproxy <no-dsa> (Minor issue)
 	[buster] - tinyproxy <postponed> (Minor issue)
 	NOTE: https://github.com/tinyproxy/tinyproxy/issues/457
 	NOTE: https://github.com/tinyproxy/tinyproxy/commit/3764b8551463b900b5b4e3ec0cd9bb9182191cb7


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[18 Sep 2024] DLA-3892-1 tinyproxy - security update
+	{CVE-2022-40468 CVE-2023-49606}
+	[bullseye] - tinyproxy 1.10.0-5+deb11u1
 [18 Sep 2024] DLA-3891-1 mariadb-10.5 - security update
 	{CVE-2024-21096}
 	[bullseye] - mariadb-10.5 1:10.5.26-0+deb11u2


=====================================
data/dla-needed.txt
=====================================
@@ -189,10 +189,6 @@ texlive-bin
   NOTE: 20240815: Added by Front-Desk (Beuc)
   NOTE: 20240815: Follow fixes from bookworm 12.1 (CVE-2023-32668) (Beuc/front-desk)
 --
-tinyproxy (Thorsten Alteholz)
-  NOTE: 20240609: Added by oldstable Security Team (jmm)
-  NOTE: 20240908: testing package
---
 tomcat9 (apo)
   NOTE: 20240908: Added by (apo)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b8061e241dea052402587416628ae4b872a2d34

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7b8061e241dea052402587416628ae4b872a2d34
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240918/f5d1887a/attachment.htm>

More information about the debian-security-tracker-commits mailing list