Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits: 48662dac by Markus Koschany at 2023-04-21T22:09:14+02:00 Remove ceph from dla-needed.txt Currently there are no open issues in Buster. Everything else are no-dsa, minor issues. - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -35,16 +35,6 @@ cairosvg (dleidert) NOTE: 20230323: Programming language: Python. NOTE: 20230411: Proposed solution for CVE-2023-27586 in Buster to backport the --unsafe switch, introduced in 1.0.21, might work (dleidert) -- -ceph - NOTE: 20221031: Programming language: C++. - NOTE: 20221031: To be checked further. Not clear whether the vulnerability can be exploited in a Debian system. - NOTE: 20221031: What should be checked is whether any user with ceph permission can do the actions described in the exploit. (ola/front-desk) - NOTE: 20221130: CVE-2022-3650: The patch is kind of trivial Python stuff backporting work. - NOTE: 20221130: Can someone take care of it in Buster? I'm currently building the Bullseye backport of the fix... - NOTE: 20221130: https://lists.debian.org/debian-lts/2022/11/msg00025.html (zigo/maintainer) - NOTE: 20230102: [buster] - ceph <not-affected> (ceph-crash service added in Ceph 14) (stefanor) - NOTE: 20230111: VCS: https://salsa.debian.org/lts-team/packages/ceph.git --- configobj (Chris Lamb) NOTE: 20230416: Programming language: Python. NOTE: 20230416: Special attention: Low priority but high popcon. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48662dac1231dd19c87bc17999e900a5767ea86d -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/48662dac1231dd19c87bc17999e900a5767ea86d You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits