dla: add package updates planned by security team before the oldstable->LTS switch

Cf. deb5b9dbbc3582d46df280607e6700f551dcb7e3
author: Sylvain Beucler <beuc@beuc.net> 2020-07-06 16:56:49 +0200
committer: Sylvain Beucler <beuc@beuc.net> 2020-07-06 16:56:49 +0200
commit: 5ef3c55c86749c0e0ffcf00c80bf26c5664145e6 (patch)
tree: 3c09dd0831efdb72749bf8f284f08bb42bef6216 /data
parent: 43495ead42b5b767bc4f750412d529e742db8a1a (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index bd5e3f6449..dc05067e02 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -51,10 +51,16 @@ gupnp
 imagemagick (Markus Koschany)
   NOTE: 20200622: Ongoing work
 --
+jruby
+  NOTE: 20200706: all open CVEs were fixed in jessie (Beuc)
+--
 linux (Ben Hutchings)
 --
 linux-4.9 (Ben Hutchings)
 --
+mercurial
+  NOTE: 20200706: all open CVEs were fixed in jessie (Beuc)
+--
 mumble
   NOTE: 20200325: Regression in last upload, forgot to follow up.
   NOTE: 20200325: https://github.com/mumble-voip/mumble/issues/3605 (abhijith)
@@ -67,6 +73,9 @@ net-snmp
 nginx
   NOTE: 20200505: Patch for CVE-2020-11724 appears to be fairly invasive and, alas, no tests. (lamby)
 --
+nss
+  NOTE: 20200706: from dsa-needed.txt: Roberto proposed an update including fixes for CVE-2018-12404 and CVE-2018-18508 (Beuc)
+--
 opendmarc
   NOTE: 20200621: testing package (thorsten)
 --
author	Sylvain Beucler <beuc@beuc.net>	2020-07-06 16:56:49 +0200
committer	Sylvain Beucler <beuc@beuc.net>	2020-07-06 16:56:49 +0200
commit	5ef3c55c86749c0e0ffcf00c80bf26c5664145e6 (patch)
tree	3c09dd0831efdb72749bf8f284f08bb42bef6216 /data
parent	43495ead42b5b767bc4f750412d529e742db8a1a (diff)