Anton Gladky pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b22e0d56 by Anton Gladky at 2021-05-03T22:33:05+02:00
Reserve DLA-2646-1 for subversion
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[03 May 2021] DLA-2646-1 subversion - security update
+ {CVE-2020-17525}
+ [stretch] - subversion 1.9.5-1+deb9u6
[29 Apr 2021] DLA-2645-1 edk2 - security update
{CVE-2019-0161 CVE-2019-14558 CVE-2019-14559 CVE-2019-14562
CVE-2019-14563 CVE-2019-14575 CVE-2019-14584 CVE-2019-14586 CVE-2019-14587
CVE-2021-28210 CVE-2021-28211}
[stretch] - edk2 0~20161202.7bbe0b3e-1+deb9u2
=====================================
data/dla-needed.txt
=====================================
@@ -148,11 +148,6 @@ spotweb
NOTE: 20210122: Upstream fix trivially bypassed, reported under CVE-2021-3286
NOTE: 20210127: Upstream says "we can fix this but it may take some time",
revisit later (Beuc)
--
-subversion (Anton Gladky)
- NOTE: 20210322: have a look at #985556 and #948834
- NOTE: 20210425: almost ready
- NOTE: 20210502: Upload is planned for CW19/2021
---
xmlbeans
NOTE: 20210222: Affected code changed significantly from 2.6.0 to 3.0.0 (the
NOTE: 20210222: upstream release with the fix). Trying to determine how to
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b22e0d563af94e12739c08219f4a1ab8e4f0ab16
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b22e0d563af94e12739c08219f4a1ab8e4f0ab16
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
