Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker
Commits: f404b94c by Santiago Ruano Rincón at 2024-05-17T14:25:59-03:00 Reserve DLA-3816-1 for bind9 - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: ===================================== data/DLA/list ===================================== @@ -1,3 +1,6 @@ +[17 May 2024] DLA-3816-1 bind9 - security update + {CVE-2023-50387 CVE-2023-50868} + [buster] - bind9 1:9.11.5.P4+dfsg-5.1+deb10u11 [16 May 2024] DLA-3815-1 firefox-esr - security update {CVE-2024-4367 CVE-2024-4767 CVE-2024-4768 CVE-2024-4769 CVE-2024-4770 CVE-2024-4777} [buster] - firefox-esr 115.11.0esr-1~deb10u1 ===================================== data/dla-needed.txt ===================================== @@ -40,16 +40,6 @@ atril NOTE: 20240319: package ready at: https://people.debian.org/~utkarsh/lts/atril/ NOTE: 20240319: needs testing as the backport was a bit sensitive. (utkarsh) -- -bind9 (Santiago) - NOTE: 20240218: Added by Front-Desk (lamby) - NOTE: 20240218: CVE-2023-4408 CVE-2023-50387 CVE-2023-50868 CVE-2023-5517 CVE-2023-5679 already fixed in bullseye. (lamby) - NOTE: 20240418: Patch created for CVE-2023-50387 and CVE-2023-50868 and package builds fine. - NOTE: 20240418: https://salsa.debian.org/lts-team/packages/bind9/-/commit/135e46d2e43b6e499454385c2228338c6a72ba96 - NOTE: 20240418: All testing activities remains. - NOTE: 20240429: Waiting some days to get more information about CVE-2023-50387 and CVE-2023-50868. Working on CVE-2023-4408 (Santiago) - NOTE: 20240430: CVE-2023-4408 fix introduces ABI changes. Studying how to handle them (Santiago) - NOTE: 20240513: Trying to reproduce KeyTrap. (Santiago) --- bluez NOTE: 20240510: Added by Front-Desk (ta) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f404b94c45177e276511ff60082724628965a962 -- This project does not include diff previews in email notifications. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f404b94c45177e276511ff60082724628965a962 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits