[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2023-4813: Fix note for buster

Wed Apr 30 04:23:32 BST 2025


Sean Whitton pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a329bfa8 by Sean Whitton at 2025-04-30T11:22:43+08:00
CVE-2023-4813: Fix note for buster

- - - - -
931804d4 by Sean Whitton at 2025-04-30T11:23:25+08:00
Reserve DLA-4143-1 for glibc

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -159003,7 +159003,7 @@ CVE-2023-3865 [ksmbd: fix out-of-bound read in smb2_write]
 CVE-2023-4813 (A flaw was found in glibc. In an uncommon situation, the gaih_inet fun ...)
 	- glibc 2.36-3
 	[bullseye] - glibc <ignored> (Uncommon config required, fix comes along with invasive refactoring, new tests do not all pass, 5th test generated by tst-nss-gai-actions.c fails)
-	[buster] - glibc <ignored> (Uncommon config required, fix comes along with invasive refactoring, new tests do not all pass)
+	[buster] - glibc <ignored> (Uncommon config required, fix comes along with invasive refactoring, new tests do not all pass on bullseye)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=28931
 	NOTE: Fixed by: https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=1c37b8022e8763fedbb3f79c02e05c6acfe5a215 (glibc-2.36)
 CVE-2023-4806 (A flaw was found in glibc. In an extremely rare situation, the getaddr ...)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,5 @@
+[30 Apr 2025] DLA-4143-1 glibc - security update
+	[bullseye] - glibc 2.31-13+deb11u12
 [29 Apr 2025] DLA-4142-1 libraw - security update
 	{CVE-2025-43961 CVE-2025-43962 CVE-2025-43963 CVE-2025-43964}
 	[bullseye] - libraw 0.20.2-1+deb11u2


=====================================
data/dla-needed.txt
=====================================
@@ -108,14 +108,6 @@ gimp
 glewlwyd
   NOTE: 20250312: Added by Front-Desk; CVE-2024-25715 to be fixed (lamby)
 --
-glibc (Sean Whitton)
-  NOTE: 20250409: Added by Front-Desk (Beuc)
-  NOTE: 20250409: Follow fixes from bookworm 12.10 (CVE-2025-0395)
-  NOTE: 20250409: Check if bug fixes from 2.36-9+deb12u10 should be backported.
-  NOTE: 20250409: Also check postponed issues (Beuc/front-desk)
-  NOTE: 20250426: Other fixes from +deb12u10 don't seem appropriate unless a
-  NOTE: 20250426: customer specifically requests some of them.  (spwhitton)
---
 golang-github-gorilla-csrf
   NOTE: 20250422: Added by Front-Desk (rouca)
   NOTE: 20250422: Need to binNMU reverse depends (in that order): golang-github-alecthomas-chroma, golang-github-niklasfasching-go-org, golang-github-yuin-goldmark-highlighting, hugo (rouca)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/be29a647e9890cfacb39777c9ad5a116c47f3fa7...931804d42ea37478a1f67231c7c09d277d1f0350

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/be29a647e9890cfacb39777c9ad5a116c47f3fa7...931804d42ea37478a1f67231c7c09d277d1f0350
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250430/c7f498ec/attachment-0001.htm>
