[Git][security-tracker-team/security-tracker][master] Reserve DLA-4070-1 for freerdp2

Thu Feb 27 21:15:37 GMT 2025


Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker


Commits:
208f708d by Tobias Frost at 2025-02-27T22:15:31+01:00
Reserve DLA-4070-1 for freerdp2

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -213239,7 +213239,6 @@ CVE-2022-39321 (GitHub Actions Runner is the application that runs a job from a
 	NOT-FOR-US: GitHub Actions Runner
 CVE-2022-39320 (FreeRDP is a free remote desktop protocol library and clients. Affecte ...)
 	- freerdp2 2.9.0+dfsg1-1 (bug #1024511)
-	[bullseye] - freerdp2 <no-dsa> (Minor issue)
 	[buster] - freerdp2 <no-dsa> (Minor issue)
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-qfq2-82qr-7f4j
 	NOTE: https://github.com/FreeRDP/FreeRDP/commit/68c6a8c1878b5294aecb04d5e27531a720b3793f (2.9.0)
@@ -254953,7 +254952,6 @@ CVE-2022-24883 (FreeRDP is a free implementation of the Remote Desktop Protocol
 	NOTE: Fixed by (backport): https://github.com/FreeRDP/FreeRDP/commit/6f473b273a4b6f0cb6aca32b95e22fd0de88e144
 CVE-2022-24882 (FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). ...)
 	- freerdp2 2.7.0+dfsg1-1
-	[bullseye] - freerdp2 <no-dsa> (Minor issue)
 	[buster] - freerdp2 <no-dsa> (Minor issue)
 	- freerdp <removed>
 	NOTE: https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-6x5p-gp49-3jhh


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[27 Feb 2025] DLA-4070-1 freerdp2 - security update
+	{CVE-2022-24882 CVE-2022-39320}
+	[bullseye] - freerdp2 2.3.0+dfsg1-2+deb11u3
 [27 Feb 2025] DLA-4069-1 emacs - security update
 	{CVE-2023-28617 CVE-2024-53920 CVE-2025-1244}
 	[bullseye] - emacs 1:27.1+1-3.1+deb11u6


=====================================
data/dla-needed.txt
=====================================
@@ -220,9 +220,6 @@ qemu (lee)
 rails
   NOTE: 20250105: Added by Front-Desk (apo)
 --
-freerdp2 (tobi)
-  NOTE: 20250224: Readded due to regression (tobi)
---
 rsync (Thorsten Alteholz)
   NOTE: 20250121: Added by Front-Desk re. potential regression outlined in #1093696. (lamby)
   NOTE: 20250211: no upstream fix yet



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/208f708d13ea51e7f615d34e395399884181f803

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/208f708d13ea51e7f615d34e395399884181f803
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250227/a4a7555a/attachment-0001.htm>
