diff options
author | Markus Koschany <apo@debian.org> | 2020-10-26 01:39:55 +0100 |
---|---|---|
committer | Markus Koschany <apo@debian.org> | 2020-10-26 01:39:55 +0100 |
commit | e6e631b06d31e0a45811bf19c8d84f296cf17da1 (patch) | |
tree | 252defd131694dc287eecd8f495d964af04af16c /data/dla-needed.txt | |
parent | 938166e01c783fcf3e5ffac1acdf3e968bd74f45 (diff) |
Claim poppler in dla-needed.txt update status of remaining packages.
Diffstat (limited to 'data/dla-needed.txt')
-rw-r--r-- | data/dla-needed.txt | 12 |
1 files changed, 8 insertions, 4 deletions
diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 7a106d2273..5889a1ab8c 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -84,9 +84,10 @@ golang-github-dgrijalva-jwt-go golang-golang-x-net-dev -- guacamole-server (Markus Koschany) - NOTE: 20201010: Reported my findings to the maintainers and the + NOTE: 20201026: Reported my findings to the maintainers and the NOTE: security team. Waiting for feedback. CVE is in guacamole-server not in NOTE: guacamole-client. Backporting the upstream patch seems viable. + NOTE: release will be this week -- junit4 (Abhijith PA) -- @@ -97,9 +98,10 @@ lemonldap-ng NOTE: 20200910: Released a DLA for CVE-2020-24660 a few days ago, so could defer. (lamby) -- libonig (Markus Koschany) - NOTE: 20201002: Fix for CVE-2020-26159 is too trivial. Besides that, please consider - NOTE: 20201002: fixing other errors mentioned in https://github.com/kkos/oniguruma/issues/207 - NOTE: 20201002: and the other 6/7 CVEs tagged as no-dsa in stretch but fixed in jessie. (utkarsh) + NOTE: 20201026: Fix for CVE-2020-26159 is too trivial. Besides that, please consider + NOTE: 20201026: fixing other errors mentioned in https://github.com/kkos/oniguruma/issues/207 + NOTE: 20201026: and the other 6/7 CVEs tagged as no-dsa in stretch but fixed in jessie. (utkarsh) + NOTE: 20201026: release will be this week -- libproxy (Emilio) NOTE: 20201026: patch not sanctioned upstream yet (Emilio) @@ -131,6 +133,8 @@ php-horde-trean pluxml NOTE: 20201011: issue is still open upstream. Also low priority for us (abhijith) -- +poppler (Markus Koschany) +-- python3.5 (Thorsten Alteholz) NOTE: 20201011: testing package NOTE: 20201018: recovering from a broken computer :-( |