diff options
author | Adrian Bunk <bunk@debian.org> | 2021-12-27 22:31:15 +0200 |
---|---|---|
committer | Adrian Bunk <bunk@debian.org> | 2021-12-27 22:31:15 +0200 |
commit | 8bbc9c4ab1f855fd17bc74603f1a16125f73752a (patch) | |
tree | 7ec8b4c9ce745fe0455ce13d1ca5123245b7555f /data | |
parent | 8626a43f600ebc7b161eee60207ae5077e1957b1 (diff) |
Reserve DLA-2856-1 for okular
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 1 | ||||
-rw-r--r-- | data/DLA/list | 3 | ||||
-rw-r--r-- | data/dla-needed.txt | 2 |
3 files changed, 3 insertions, 3 deletions
diff --git a/data/CVE/list b/data/CVE/list index 5a0c28e0ba..b9f5bb20d0 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -126240,7 +126240,6 @@ CVE-2020-9359 (KDE Okular before 1.10.0 allows code execution via an action link {DLA-2159-1} - okular 4:19.12.3-2 (bug #954891) [buster] - okular 4:17.12.2-2.2+deb10u1 - [stretch] - okular <no-dsa> (Minor issue) NOTE: https://invent.kde.org/kde/okular/-/commit/6a93a033b4f9248b3cd4d04689b8391df754e244 NOTE: https://kde.org/info/security/advisory-20200312-1.txt NOTE: https://sysdream.com/news/lab/2020-03-24-cve-2020-9359-okular-command-execution/ (PoC) diff --git a/data/DLA/list b/data/DLA/list index 6f53acd392..b05c289ce0 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[27 Dec 2021] DLA-2856-1 okular - security update + {CVE-2020-9359} + [stretch] - okular 4:16.08.2-1+deb9u2 [27 Dec 2021] DLA-2855-1 monit - security update {CVE-2019-11454 CVE-2019-11455} [stretch] - monit 1:5.20.0-6+deb9u2 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index ae6a0d4855..405bcde6fc 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -80,8 +80,6 @@ nvidia-graphics-drivers (Markus Koschany) NOTE: nvidia-graphics-drivers-legacy-390xx but will ask for more testing on the lts NOTE: mailing list tomorrow (apo) -- -okular (Adrian Bunk) --- paramiko (Utkarsh) NOTE: 20211227: CVE-2018-7750 and CVE-2018-1000805 were fixed in DLA-1556-1 NOTE: 20211227: in jessie but are unfixed in stretch (bunk) |