diff options
author | Utkarsh Gupta <utkarsh@debian.org> | 2021-12-29 02:27:53 +0530 |
---|---|---|
committer | Utkarsh Gupta <utkarsh@debian.org> | 2021-12-29 02:27:53 +0530 |
commit | ccf4085013eda2197df30ca1bafd3ff73bde2188 (patch) | |
tree | 87db7d32a96ee390c0a04fc559354fa1b7ed031a | |
parent | 1d276f87ce2ff1ba27626aa3734fcf570235cc87 (diff) |
Reserve DLA-2862-1 for python-gnupg
-rw-r--r-- | data/CVE/list | 1 | ||||
-rw-r--r-- | data/DLA/list | 3 | ||||
-rw-r--r-- | data/dla-needed.txt | 4 |
3 files changed, 3 insertions, 5 deletions
diff --git a/data/CVE/list b/data/CVE/list index 4db823ed5a..2430ed5043 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -188929,7 +188929,6 @@ CVE-2019-6691 (phpwind 9.0.2.170426 UTF8 allows SQL Injection via the admin.php? CVE-2019-6690 (python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg t ...) {DLA-1675-1} - python-gnupg 0.4.4-1 - [stretch] - python-gnupg <no-dsa> (Minor issue) NOTE: https://github.com/stigtsp/CVE-2019-6690-python-gnupg-vulnerability NOTE: https://github.com/vsajip/python-gnupg/commit/39eca266dd837e2ad89c94eb17b7a6f50b25e7cf#diff-88b99bb28683bd5b7e3a204826ead112 NOTE: https://github.com/vsajip/python-gnupg/commit/3003b654ca1c29b0510a54b9848571b3ad57df19#diff-88b99bb28683bd5b7e3a204826ead112 diff --git a/data/DLA/list b/data/DLA/list index 0cc48b82b0..c30aa53469 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[29 Dec 2021] DLA-2862-1 python-gnupg - security update + {CVE-2018-12020 CVE-2019-6690} + [stretch] - python-gnupg 0.3.9-1+deb9u1 [28 Dec 2021] DLA-2861-1 rdflib - security update {CVE-2019-7653} [stretch] - rdflib 4.2.1-2+deb9u1 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index bc3502b9a4..7a7e418f85 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -84,10 +84,6 @@ nvidia-graphics-drivers pgbouncer (Christoph Berg) NOTE: 20211220: maintainer might want to upload fixed version -- -python-gnupg (Utkarsh) - NOTE: 20211228: CVE-2019-6690 was fixed for jessie in DLA-1675-1 - NOTE: 20211228: but is unfixed in stretch (bunk) --- samba (Utkarsh Gupta) NOTE: 20211128: WIP https://salsa.debian.org/lts-team/packages/samba/ NOTE: 20211212: Fix is too large, coordination with ELTS-upload |