Reserve DLA-2995-1 for smarty3

author: Markus Koschany <apo@debian.org> 2022-05-05 21:58:28 +0200
committer: Markus Koschany <apo@debian.org> 2022-05-05 21:58:41 +0200
commit: 3e883e4f255790920d2bda13cea93d04c60d2c80 (patch)
tree: cb72d52c09de4b60a377a1e6f0ee7ef9371a0dde /data
parent: 677e0dcc0c585741d7401c822707354afca795d1 (diff)
2 files changed, 3 insertions, 2 deletions
diff --git a/data/DLA/list b/data/DLA/list
index 0e9042eb9e..fc71ca066e 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,6 @@
+[05 May 2022] DLA-2995-1 smarty3 - security update
+	{CVE-2021-21408 CVE-2021-29454}
+	[stretch] - smarty3 3.1.31+20161214.1.c7d42e4+selfpack1-2+deb9u5
 [05 May 2022] DLA-2994-1 firefox-esr - security update
 	{CVE-2022-29909 CVE-2022-29911 CVE-2022-29912 CVE-2022-29914 CVE-2022-29916 CVE-2022-29917}
 	[stretch] - firefox-esr 91.9.0esr-1~deb9u1
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index f7167076f9..f9f6fac733 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -153,8 +153,6 @@ samba
   NOTE: 20220110: fix applied, but will need a second opinion. (utkarsh)
   NOTE: 20220125: ftbfs, wip. (utkarsh)
 --
-smarty3 (Markus Koschany)
---
 snapd
   NOTE: 20220308: seems vulnerable at least to setup_private_mount,
   NOTE: 20220308: but double check (pochu)
author	Markus Koschany <apo@debian.org>	2022-05-05 21:58:28 +0200
committer	Markus Koschany <apo@debian.org>	2022-05-05 21:58:41 +0200
commit	3e883e4f255790920d2bda13cea93d04c60d2c80 (patch)
tree	cb72d52c09de4b60a377a1e6f0ee7ef9371a0dde /data
parent	677e0dcc0c585741d7401c822707354afca795d1 (diff)