Anton Gladky pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
22ea11b5 by Anton Gladky at 2023-11-24T06:51:27+01:00
Reserve DLA-3662-1 for freeimage
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[24 Nov 2023] DLA-3662-1 freeimage - security update
+ {CVE-2020-21427 CVE-2020-21428 CVE-2020-22524}
+ [buster] - freeimage 3.18.0+ds2-1+deb10u2
[23 Nov 2023] DLA-3661-1 firefox-esr - security update
{CVE-2023-6204 CVE-2023-6205 CVE-2023-6206 CVE-2023-6207 CVE-2023-6208
CVE-2023-6209 CVE-2023-6212}
[buster] - firefox-esr 115.5.0esr-1~deb10u1
=====================================
data/dla-needed.txt
=====================================
@@ -65,13 +65,6 @@ flatpak
NOTE: 20231006: Added by Front-Desk (Beuc)
NOTE: 20231006: Follow fixes from bullseye 11.7 (2 CVEs) (Beuc/front-desk)
--
-freeimage (gladk)
- NOTE: 20230826: Added by Front-Desk (utkarsh)
- NOTE: 20230826: Anton Gladky is the maintainer. Please sync with him about
the
- NOTE: 20230826: about this. Anyway, too many CVEs piled up. I feel we should
roll
- NOTE: 20230826: out the DLA/ELA now. (utkarsh)
- NOTE: 20231120: many CVEs, check with ASAN is needed. (gladk)
---
frr
NOTE: 20231119: Added by Front-Desk (apo)
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22ea11b5c0e68482bfcb0169a846d12f3eff2ee2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22ea11b5c0e68482bfcb0169a846d12f3eff2ee2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
