[Git][security-tracker-team/security-tracker][master] Claim composer, libpgjava, smarty3 and twig and recheck

Mon, 02 May 2022 12:18:07 -0700 


Markus Koschany pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
c59ad904 by Markus Koschany at 2022-05-02T21:16:17+02:00
Claim composer, libpgjava, smarty3 and twig and recheck

if these packages are actually affected.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -38,7 +38,7 @@ cgal
 ckeditor (Sylvain Beucler)
   NOTE: 20220402: multiple pendings vulnerabilities (Beuc)
 --
-composer:
+composer: (Markus Koschany)
   NOTE: 20220424: programming language PHP
   NOTE: 20220424: check whether really affected (Anton)
 --
@@ -84,7 +84,7 @@ liblouis (Andreas Rönnquist)
   NOTE: 20220320: no patch available yet. Reproducible memory leaks with ASAN
   NOTE: 20220320: and POC. Consider fixing CVE-2018-17294 too.
 --
-libpgjava
+libpgjava (Markus Koschany)
 --
 libvirt (Thorsten Alteholz)
   NOTE: 20220423: wait for upload in newer releases, dependency loop seems to 
be resolved now
@@ -145,7 +145,7 @@ samba
   NOTE: 20220110: fix applied, but will need a second opinion. (utkarsh)
   NOTE: 20220125: ftbfs, wip. (utkarsh)
 --
-smarty3
+smarty3 (Markus Koschany)
 --
 snapd
   NOTE: 20220308: seems vulnerable at least to setup_private_mount,
@@ -166,7 +166,7 @@ tiff (Utkarsh)
   NOTE: 20220404: if that works out well, I'll roll the same for stretch. 
(utkarsh)
   NOTE: 20220419: new CVE reported; waiting to see if there are more. (utkarsh)
 --
-twig
+twig (Markus Koschany)
   NOTE: 20220402: cf. DSA-5107-1; similar code in lib/Twig/Extension/Core.php 
(Beuc)
 --
 twisted (Stefano Rivera)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c59ad904ab7e13db4d890c3079f9e9439474e640

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c59ad904ab7e13db4d890c3079f9e9439474e640
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to