diff options
author | Utkarsh Gupta <utkarsh@debian.org> | 2021-04-02 02:50:32 +0530 |
---|---|---|
committer | Utkarsh Gupta <utkarsh@debian.org> | 2021-04-02 02:50:32 +0530 |
commit | 45d2c4ea9a0d7b7a0e62555f10078c188c208b00 (patch) | |
tree | c9c87a6b536f227c2dca9845d233ce52e4dacc17 | |
parent | 3a156194a5f5785ec6a316ec3ebf1703b1a60616 (diff) |
Reserve DLA-2615-1 for spamassassin
-rw-r--r-- | data/DLA/list | 3 | ||||
-rw-r--r-- | data/dla-needed.txt | 2 |
2 files changed, 3 insertions, 2 deletions
diff --git a/data/DLA/list b/data/DLA/list index a4509fcda0..f80b798d46 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[02 Apr 2021] DLA-2615-1 spamassassin - security update + {CVE-2020-1946} + [stretch] - spamassassin 3.4.2-1~deb9u4 [01 Apr 2021] DLA-2614-1 busybox - security update {CVE-2021-28831} [stretch] - busybox 1:1.22.0-19+deb9u2 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index e76bcbbaec..fc6615da86 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -139,8 +139,6 @@ shiro (Roberto C. Sánchez) smarty3 (Abhijith PA) NOTE: 20200322: CVE-2018-13982 need more time to backport (abhijith) -- -spamassassin (Utkarsh) --- spotweb NOTE: 20201220: The affected code uses string concatenation to construct a SQL query. NOTE: 20201220: Upstream's "fix" is to blacklist all the "bad" SQL commands. (roberto) |