diff options
author | Adrian Bunk <bunk@debian.org> | 2021-12-26 21:39:01 +0200 |
---|---|---|
committer | Adrian Bunk <bunk@debian.org> | 2021-12-26 21:39:01 +0200 |
commit | 4739f9ff6f22dab914fa9b0770691246c410c412 (patch) | |
tree | a0a149fdb48963621752ed552e868bda1205b10c | |
parent | 1b5e45fa9155310d52ed002f76f77f981dfa8568 (diff) |
Reserve DLA-2851-1 for libextractor
-rw-r--r-- | data/CVE/list.2019 | 1 | ||||
-rw-r--r-- | data/DLA/list | 3 | ||||
-rw-r--r-- | data/dla-needed.txt | 2 |
3 files changed, 3 insertions, 3 deletions
diff --git a/data/CVE/list.2019 b/data/CVE/list.2019 index 8cd612afdb..f9e16916ae 100644 --- a/data/CVE/list.2019 +++ b/data/CVE/list.2019 @@ -14075,7 +14075,6 @@ CVE-2019-15531 (GNU Libextractor through 1.9 has a heap-based buffer over-read i {DLA-1904-1} - libextractor 1:1.9-2 (bug #935553) [buster] - libextractor <no-dsa> (Minor issue) - [stretch] - libextractor <no-dsa> (Minor issue) NOTE: https://bugs.gnunet.org/view.php?id=5846 NOTE: https://git.gnunet.org/libextractor.git/commit/?id=d2b032452241708bee68d02aa02092cfbfba951a CVE-2019-15530 (An issue was discovered on D-Link DIR-823G devices with firmware V1.0. ...) diff --git a/data/DLA/list b/data/DLA/list index 985b6a4f84..f62b82c4e3 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[26 Dec 2021] DLA-2851-1 libextractor - security update + {CVE-2019-15531} + [stretch] - libextractor 1:1.3-4+deb9u4 [26 Dec 2021] DLA-2850-1 libpcap - security update {CVE-2019-15165} [stretch] - libpcap 1.8.1-3+deb9u1 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 368da382be..ec5f29adb6 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -48,8 +48,6 @@ gpac (Roberto C. Sánchez) -- libarchive (Thorsten Alteholz) -- -libextractor (Adrian Bunk) --- libgit2 (Utkarsh) NOTE: 20211029: CVE-2018-10887/CVE-2018-10888/CVE-2018-15501 were fixed NOTE: 20211029: for jessie in DLA-1477-1 and should also be fixed in stretch |