Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker
Commits: b22e0d56 by Anton Gladky at 2021-05-03T22:33:05+02:00 Reserve DLA-2646-1 for subversion - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: ===================================== data/DLA/list ===================================== @@ -1,3 +1,6 @@ +[03 May 2021] DLA-2646-1 subversion - security update + {CVE-2020-17525} + [stretch] - subversion 1.9.5-1+deb9u6 [29 Apr 2021] DLA-2645-1 edk2 - security update {CVE-2019-0161 CVE-2019-14558 CVE-2019-14559 CVE-2019-14562 CVE-2019-14563 CVE-2019-14575 CVE-2019-14584 CVE-2019-14586 CVE-2019-14587 CVE-2021-28210 CVE-2021-28211} [stretch] - edk2 0~20161202.7bbe0b3e-1+deb9u2 ===================================== data/dla-needed.txt ===================================== @@ -148,11 +148,6 @@ spotweb NOTE: 20210122: Upstream fix trivially bypassed, reported under CVE-2021-3286 NOTE: 20210127: Upstream says "we can fix this but it may take some time", revisit later (Beuc) -- -subversion (Anton Gladky) - NOTE: 20210322: have a look at #985556 and #948834 - NOTE: 20210425: almost ready - NOTE: 20210502: Upload is planned for CW19/2021 --- xmlbeans NOTE: 20210222: Affected code changed significantly from 2.6.0 to 3.0.0 (the NOTE: 20210222: upstream release with the fix). Trying to determine how to View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b22e0d563af94e12739c08219f4a1ab8e4f0ab16 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b22e0d563af94e12739c08219f4a1ab8e4f0ab16 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits