diff options
author | Chris Lamb <lamby@debian.org> | 2022-02-03 15:02:40 -0800 |
---|---|---|
committer | Chris Lamb <lamby@debian.org> | 2022-02-03 15:02:40 -0800 |
commit | 678dca9e29cf70c424f8592833dda45b0cd2923f (patch) | |
tree | 25a9bbce7c72a35b0c057231e9c46564f518914d | |
parent | b5b829d65c528ede7265b8f88218e96b357adb1f (diff) |
Reserve DLA-2910-1 for ldns.
-rw-r--r-- | data/CVE/list.2017 | 2 | ||||
-rw-r--r-- | data/DLA/list | 3 | ||||
-rw-r--r-- | data/dla-needed.txt | 3 |
3 files changed, 3 insertions, 5 deletions
diff --git a/data/CVE/list.2017 b/data/CVE/list.2017 index fbe463c750..6cc8d5c4ad 100644 --- a/data/CVE/list.2017 +++ b/data/CVE/list.2017 @@ -6034,7 +6034,6 @@ CVE-2017-1000234 (I, Librarian version <=4.6 & 4.7 is vulnerable to Direc - i-librarian <itp> (bug #649291) CVE-2017-1000232 (A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecifi ...) - ldns 1.7.0-4 (bug #882014) - [stretch] - ldns <no-dsa> (Minor issue) [jessie] - ldns <no-dsa> (Minor issue) [wheezy] - ldns <not-affected> (Vulnerable code not present) NOTE: https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=1257 @@ -6042,7 +6041,6 @@ CVE-2017-1000232 (A double-free vulnerability in str2host.c in ldns 1.7.0 have u CVE-2017-1000231 (A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified ...) {DLA-1182-1} - ldns 1.7.0-4 (bug #882015) - [stretch] - ldns <no-dsa> (Minor issue) [jessie] - ldns <no-dsa> (Minor issue) NOTE: https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=1256 NOTE: https://github.com/NLnetLabs/ldns/commit/c8391790c96d4c8a2c10f9ab1460fda83b509fc2 diff --git a/data/DLA/list b/data/DLA/list index 60d562ed72..dc07ba41f0 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[03 Feb 2022] DLA-2910-1 ldns - security update + {CVE-2017-1000231 CVE-2017-1000232 CVE-2020-19860 CVE-2020-19861} + [stretch] - ldns 1.7.0-1+deb9u1 [03 Feb 2022] DLA-2909-1 strongswan - security update {CVE-2021-45079} [stretch] - strongswan 5.5.1-4+deb9u6 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 6c23bb00ed..379cfd3068 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -55,9 +55,6 @@ gpac (Roberto C. Sánchez) guacamole-client (Markus Koschany) NOTE: 20220114: package unmaintained AFAICS and only present in stretch (Beuc) -- -ldns (Chris Lamb) - NOTE: 20220203: 4 minor CVEs to fix (Beuc) --- libarchive (Thorsten Alteholz) NOTE: 20220116: waiting for upload in higher releases NOTE: 20220130: new CVEs arrived |