Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits: 7239b9c6 by Markus Koschany at 2025-03-31T00:23:32+02:00 Add libdata-entropy-perl to dla-needed.txt - - - - - 86a2e61d by Markus Koschany at 2025-03-31T00:33:37+02:00 Add mbedtls to dla-needed.txt - - - - - 27b3972c by Markus Koschany at 2025-03-31T00:38:49+02:00 Add mongo-c-driver to dla-needed.txt - - - - - be00fd52 by Markus Koschany at 2025-03-31T00:48:00+02:00 Add simplesamlphp to dla-needed.txt - - - - - cfabb4e3 by Markus Koschany at 2025-03-31T00:52:30+02:00 Claim tomcat9 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: ===================================== data/dla-needed.txt ===================================== @@ -139,6 +139,9 @@ knot-resolver lemonldap-ng NOTE: 20250206: CVE-2024-52948 -- +libdata-entropy-perl + NOTE: 20250331: Added by Front-Desk (apo) +-- libnet-easytcp-perl NOTE: 20250117: Added by Front-Desk (rouca) -- @@ -148,11 +151,17 @@ libreoffice linux (Ben Hutchings) NOTE: 20230111: Perma-added, Linux package specifically delegated to bwh (LTS Team) -- +mbedtls + NOTE: 20250331: Added by Front-Desk (apo) +-- mina2 NOTE: 20250111: Added by Front-Desk (ta) NOTE: 20250114: Patches for CVE-2024-52046 https://github.com/apache/mina/commit/f9cc5ada6ebef4ee7cc51aac824e42e2e422310e (2.2.4) and ... (dleidert) NOTE: 20250114: ... https://github.com/apache/mina/commit/cdb59eb6131696a440870ab89ad0e20804eb5ca7 (2.1.10) (dleidert) -- +mongo-c-driver + NOTE: 20250331: Added by Front-Desk (apo) +-- musl (Utkarsh) NOTE: 20250217: Added by Front-Desk (Beuc) NOTE: 20250218: Requested review. (lamby) @@ -190,7 +199,7 @@ openafs NOTE: 20250102: Looking at CVE-2024-10394 (abhijith) NOTE: 20250203: https://people.debian.org/~abhijith/upload/openafs_patches/ (abhijith) -- -openjpeg2 +openjpeg2 (Markus Koschany) NOTE: 20250105: Added by Front-Desk (apo) NOTE: 20250224: Discovered two regressions. I plan to release on Wednesday. (apo) -- @@ -253,6 +262,9 @@ shadow NOTE: 20250105: shadow is a high-profile package. Upstream discussion for CVE-2024-56433 is NOTE: 20250105: ongoing. I'm adding it to dla-needed.txt to keep it on our radar. -- +simplesamlphp + NOTE: 20250331: Added by Front-Desk (apo) +-- snapcast NOTE: 20250118: Added by Front-Desk (rouca) NOTE: 20250119: Upstream just re-added a secured Stream.AddStream functionality to fix CVE-2023-36177, but hasn't released it yet (dleidert) @@ -276,6 +288,9 @@ tcpdf NOTE: 20241205: Added by Front-Desk (santiago) NOTE: 20241230: https://lists.debian.org/debian-lts/2024/12/msg00057.html (bunk) -- +tomcat9 (Markus Koschany) + NOTE: 20250331: Added by Front-Desk (apo) +-- trafficserver NOTE: 20241120: Added by Front-Desk (Beuc) NOTE: 20241120: Upcoming DSA (Beuc/front-desk) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3c28b536e9e889527a86c9bd2701896c868bedf5...cfabb4e39cb2bd990c7afcad9c9dd9519851713c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/3c28b536e9e889527a86c9bd2701896c868bedf5...cfabb4e39cb2bd990c7afcad9c9dd9519851713c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
