diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2021-11-20 11:29:34 +0100 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2021-11-20 11:29:34 +0100 |
| commit | cb73823153415dc3e82841f0a8fbd29f4abf7124 (patch) | |
| tree | ab1c50da875a1c57a58ffb4d1d6f7dc7bc8d528b /data | |
| parent | d56d88cc5c785d969a508f0628331a10384de55d (diff) | |
Reserve DLA-2824-1 for firebird3.0
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 1 | ||||
| -rw-r--r-- | data/DLA/list | 3 | ||||
| -rw-r--r-- | data/dla-needed.txt | 4 |
3 files changed, 3 insertions, 5 deletions
diff --git a/data/CVE/list b/data/CVE/list index d18b838834..4efb2ec3c4 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -272975,7 +272975,6 @@ CVE-2017-11510 (An information leak exists in Wanscam's HW0021 network camera th CVE-2017-11509 (An authenticated remote attacker can execute arbitrary code in Firebir ...) {DLA-2129-1 DLA-1374-1} - firebird3.0 3.0.3.32900.ds4-3 - [stretch] - firebird3.0 <postponed> (Minor issue, can be fixed along in a future update) - firebird2.5 <removed> NOTE: https://www.tenable.com/security/research/tra-2017-36 NOTE: https://github.com/FirebirdSQL/firebird/issues/5787 diff --git a/data/DLA/list b/data/DLA/list index d3c66e2ff5..e0364295e6 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[20 Nov 2021] DLA-2824-1 firebird3.0 - security update + {CVE-2017-11509} + [stretch] - firebird3.0 3.0.1.32609.ds4-14+deb9u1 [19 Nov 2021] DLA-2823-1 salt - security update {CVE-2021-21996} [stretch] - salt 2016.11.2+ds-1+deb9u8 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 32f323e518..f7da107b88 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -30,10 +30,6 @@ debian-archive-keyring exiv2 (Thorsten Alteholz) NOTE: 20211109: testing package -- -firebird3.0 (Sylvain Beucler) - NOTE: 20211118: CVE-2017-11509 was fixed in firebird2.5 in wheezy (DLA-1374-1) - NOTE: 20211118: and jessie (DLA-2129-1) but is unfixed in firebird in stretch. (bunk) --- firefox-esr (Emilio) NOTE: 20211116: blocked on toolchain backports (pochu) -- |