summaryrefslogtreecommitdiffstats
path: root/data/dla-needed.txt
diff options
context:
space:
mode:
authorSylvain Beucler <beuc@beuc.net>2022-02-08 13:14:07 +0100
committerSylvain Beucler <beuc@beuc.net>2022-02-08 13:14:07 +0100
commit702deaf75bc6c3118cbf4aba93cbef245684cb08 (patch)
tree420714bc38a2626087048ed5bc3530668e777e55 /data/dla-needed.txt
parentbf0f91f4eb4d0c7f3ea5ac02ebb925096443d3d7 (diff)
Ignore CVE-2022-21682 and CVE-2021-43860 for flatpak in stretch
following secteam analysis at 053f0cd77086c6f73f0d6d33b93833e99ba796c0 + no LTS contributor claimed it since it was added
Diffstat (limited to 'data/dla-needed.txt')
-rw-r--r--data/dla-needed.txt3
1 files changed, 0 insertions, 3 deletions
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index a0ca456705..74f06e6a0f 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -42,9 +42,6 @@ firmware-nonfree (Markus Koschany)
NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag
NOTE: 20211207: Intend to release this week.
--
-flatpak
- NOTE: 20220113: upcoming DSA; non-trivial backport (Beuc)
---
gif2apng (Anton)
NOTE: 20220114: orphaned package with inactive upstream, maybe coordinate with Debian QA to write our own patches (Beuc)
NOTE: 20220114: CVEs unrelated to apng2gif's (Beuc)

© 2014-2022 Faster IT GmbH | imprint | privacy policy