[Git][security-tracker-team/security-tracker][master] Reserve DLA-4309-1 for libxslt

[Guilhem Moulin (@guilhem)]

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5827b93f by Guilhem Moulin at 2025-09-25T11:29:07+02:00
Reserve DLA-4309-1 for libxslt

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[25 Sep 2025] DLA-4309-1 libxslt - security update
+	{CVE-2023-40403 CVE-2025-7424}
+	[bullseye] - libxslt 1.1.34-4+deb11u3
 [22 Sep 2025] DLA-4308-1 corosync - security update
 	{CVE-2025-30472}
 	[bullseye] - corosync 3.1.2-2+deb11u1


=====================================
data/dla-needed.txt
=====================================
@@ -254,10 +254,6 @@ libxmltok
   NOTE: 20250421: Fixing the expat copy in xmlrpc-c at the same time would make sense. (bunk)
   NOTE: 20250505: WIP there are lots of CVEs to review (ta)
 --
-libxslt (guilhem)
-  NOTE: 20250717: Added by Front-Desk (Beuc)
-  NOTE: 20250717: Upcoming DSA ("wait until the [Apple] patches are merged upstream") (Beuc/front-desk)
---
 linux (Ben Hutchings)
   NOTE: 20230111: Perma-added, Linux package specifically delegated to bwh (LTS Team)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5827b93f4d241437c3c1d673fd9cd268e61f998e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5827b93f4d241437c3c1d673fd9cd268e61f998e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250925/22c85365/attachment.htm>