Hi Dominik, I see you've reserved the DLA and announced the update. But I can't see the upload anywhere? Did it make through? Did you get the ACCEPT mail?
I couldn't find anything on https://tracker.debian.org/pkg/libgoogle-gson-java and neither on buildd or anyplace equivalent. Let me know if you need help figuring it out. - u On Fri, May 13, 2022 at 10:30 PM Raphaël Hertzog (@hertzog) < git...@salsa.debian.org> wrote: > Raphaël Hertzog pushed to branch master at Freexian SARL / Extended LTS / > security-tracker > <https://salsa.debian.org/freexian-team/extended-lts/security-tracker> > Commits: > > > - *19eb3c00 > > <https://salsa.debian.org/freexian-team/extended-lts/security-tracker/-/commit/19eb3c00d055bd445e017f6f55e98ba98050c108>* > by Dominik George *at 2022-05-13T18:49:03+02:00* > > Reserve DLA-3001-1 for libgoogle-gson-java > > - *5addb27b > > <https://salsa.debian.org/freexian-team/extended-lts/security-tracker/-/commit/5addb27b24442057c54116917dd24e49c0cb45d4>* > by Freexian Bot *at 2022-05-13T17:00:05+00:00* > > Merge branch 'master' of > https://salsa.debian.org/security-tracker-team/security-tracker > > > 2 changed files: > > - data/DLA/list > > <#m_4604614717196995816_m_5650286188839746640_c6cd61c8ef8efbfbfd18815b1aad9ff25179adb9> > - data/dla-needed.txt > > <#m_4604614717196995816_m_5650286188839746640_451c03275399f1318aed4e8b2d621183019720c6> > > Changes: > > - *data/DLA/list* > > <https://salsa.debian.org/freexian-team/extended-lts/security-tracker/-/compare/27335468bee3558c61b2301c78acdcf838854a3f...5addb27b24442057c54116917dd24e49c0cb45d4#c6cd61c8ef8efbfbfd18815b1aad9ff25179adb9> > ------------------------------ > 1 > > +[13 May 2022] DLA-3001-1 libgoogle-gson-java - security update > > 2 > > + {CVE-2022-25647} > > 3 > > + [stretch] - libgoogle-gson-java 2.4-1+deb9u1 > > 1 4 > > [12 May 2022] DLA-3000-1 waitress - security update > > 2 5 > > {CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 > CVE-2022-24761} > > 3 6 > > [stretch] - waitress 1.0.1-1+deb9u1 > > > - *data/dla-needed.txt* > > <https://salsa.debian.org/freexian-team/extended-lts/security-tracker/-/compare/27335468bee3558c61b2301c78acdcf838854a3f...5addb27b24442057c54116917dd24e49c0cb45d4#451c03275399f1318aed4e8b2d621183019720c6> > ------------------------------ > ... ... @@ -103,8 +103,6 @@ kvmtool > 103 103 > > NOTE: 20220402: stretch-specific, orphaned package (Beuc) > > 104 104 > > NOTE: 20220402: CVE-2021-45464 looks critical, check with upstream for > acknowledgments/fixes (Beuc) > > 105 105 > > -- > > 106 > > -libgoogle-gson-java (Dominik George) > > 107 > > --- > > 108 106 > > liblouis > > 109 107 > > NOTE: 20220320: no patch available yet. Reproducible memory leaks with > ASAN > > 110 108 > > NOTE: 20220320: and POC. Consider fixing CVE-2018-17294 too. > > > > — > View it on GitLab > <https://salsa.debian.org/freexian-team/extended-lts/security-tracker/-/compare/27335468bee3558c61b2301c78acdcf838854a3f...5addb27b24442057c54116917dd24e49c0cb45d4>. > > You're receiving this email because of your account on salsa.debian.org. > If you'd like to receive fewer emails, you can adjust your notification > settings. > > -- > To unsubscribe from this group and stop receiving emails from it, send an > email to extended-lts-team+unsubscr...@freexian.com. >