From f721120671e31372f1e5cf04c225d66b162e73fc Mon Sep 17 00:00:00 2001 From: Markus Koschany Date: Mon, 1 Nov 2021 22:55:02 +0100 Subject: Reserve DLA-2806-1 for glusterfs --- data/DLA/list | 3 +++ data/dla-needed.txt | 4 ---- 2 files changed, 3 insertions(+), 4 deletions(-) diff --git a/data/DLA/list b/data/DLA/list index c7f8b36c94..a5fa38c4dd 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[01 Nov 2021] DLA-2806-1 glusterfs - security update + {CVE-2018-1088 CVE-2018-10841 CVE-2018-10904 CVE-2018-10907 CVE-2018-10911 CVE-2018-10913 CVE-2018-10914 CVE-2018-10923 CVE-2018-10926 CVE-2018-10927 CVE-2018-10928 CVE-2018-10929 CVE-2018-10930 CVE-2018-14652 CVE-2018-14653 CVE-2018-14654 CVE-2018-14659 CVE-2018-14660 CVE-2018-14661} + [stretch] - glusterfs 3.8.8-1+deb9u1 [31 Oct 2021] DLA-2805-1 libmspack - security update {CVE-2019-1010305} [stretch] - libmspack 0.5-1+deb9u4 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 562e4bff03..35bec1c476 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -47,10 +47,6 @@ firmware-nonfree NOTE: 20210731: WIP: https://salsa.debian.org/lts-team/packages/firmware-nonfree NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag -- -glusterfs (Markus Koschany) - NOTE: 20211029: 15 CVEs that were fixed in jessie in DLA-1510-1 and DLA-1565-1 - NOTE: 20211029: should also be fixed in stretch (bunk) --- gpac (Roberto C. Sánchez) NOTE: 20211101: coordinating with secteam for s-p-u since stretch/buster versions match (roberto) -- -- cgit v1.2.3