[Git][security-tracker-team/security-tracker][master] Reserve DLA-4525-1 for libyaml-syck-perl

Andrej Shadura (@andrewsh) andrewsh at debian.org
Thu Apr 9 19:34:38 BST 2026 


Andrej Shadura pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8421c10a by Andrej Shadura at 2026-04-09T20:34:25+02:00
Reserve DLA-4525-1 for libyaml-syck-perl

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
Binary files a/data/CVE/list and b/data/CVE/list differ


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[09 Apr 2026] DLA-4525-1 libyaml-syck-perl - security update
+	{CVE-2025-11683 CVE-2026-4177}
+	[bullseye] - libyaml-syck-perl 1.34-1+deb11u1
 [08 Apr 2026] DLA-4524-1 postgresql-13 - security update
 	{CVE-2026-2003 CVE-2026-2004 CVE-2026-2005 CVE-2026-2006}
 	[bullseye] - postgresql-13 13.23-0+deb11u2


=====================================
data/dla-needed.txt
=====================================
@@ -262,12 +262,6 @@ libxslt
   NOTE: 20251020: In progress, waiting for upstream action (guilhem)
   NOTE: 20251104: Done, but waiting for upstream to merge before uploading and issuing the DLA (guilhem)
 --
-libyaml-syck-perl (andrewsh)
-  NOTE: 20260319: Added by Front-Desk (charles)
-  NOTE: 20260319: In dsa-needed, coordinate with secteam. It's 4 problems in
-  NOTE: 20260319: one CVE, I could confirm at least one, but perl looks like
-  NOTE: 20260319: hieroglyphs to me (charles)
---
 linux (Ben Hutchings)
   NOTE: 20230111: Perma-added, Linux package specifically delegated to bwh (LTS Team)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8421c10aee6d8739e3a3ebaec36782618c3f74d4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8421c10aee6d8739e3a3ebaec36782618c3f74d4
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260409/6a2956d3/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list