Reserve DLA-2888-1 for nvidia-graphics-drivers

author: Markus Koschany <apo@debian.org> 2022-01-18 21:36:59 +0100
committer: Markus Koschany <apo@debian.org> 2022-01-18 21:37:16 +0100
commit: e445b007bd3e4a0d90ad79e1ebc9a7f445099377 (patch)
tree: c4e9b3d64e3cab3e269f72fc4be145fe012fe733 /data
parent: 445a7ec95d1927181ef04feee22c520882e890ee (diff)
2 files changed, 3 insertions, 7 deletions
diff --git a/data/DLA/list b/data/DLA/list
index 8fbe5d8a14..6f50dd261b 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,6 @@
+[18 Jan 2022] DLA-2888-1 nvidia-graphics-drivers - security update
+	{CVE-2021-1056 CVE-2021-1076 CVE-2021-1093 CVE-2021-1094 CVE-2021-1095}
+	[stretch] - nvidia-graphics-drivers 390.144-1~deb9u1
 [18 Jan 2022] DLA-2887-1 lighttpd - security update
 	{CVE-2018-19052}
 	[stretch] - lighttpd 1.4.45-1+deb9u1
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 41ae1d45bc..398d07b37c 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -86,13 +86,6 @@ linux (Ben Hutchings)
 --
 linux-4.19 (Ben Hutchings)
 --
-nvidia-graphics-drivers
-  NOTE: package is in non-free but also in packages-to-support
-  NOTE: only CVE‑2021‑1076 seems to be fixed in the R390 branch used in Stretch, no fix available for CVE-2021-1077
-  NOTE: 20211108: nvidia-graphics-drivers-legacy-390xx 390.144-1 in buster/bullseye/bookworm
-  NOTE: 20211108: now fixes all 5 CVEs (bunk)
-  NOTE: 20211229: https://people.debian.org/~apo/lts/nvidia-graphics-drivers/
---
 pgbouncer (Christoph Berg)
   NOTE: 20220104: maintainer might want to upload fixed version
 --
author	Markus Koschany <apo@debian.org>	2022-01-18 21:36:59 +0100
committer	Markus Koschany <apo@debian.org>	2022-01-18 21:37:16 +0100
commit	e445b007bd3e4a0d90ad79e1ebc9a7f445099377 (patch)
tree	c4e9b3d64e3cab3e269f72fc4be145fe012fe733 /data
parent	445a7ec95d1927181ef04feee22c520882e890ee (diff)