summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAbhijith PA <abhijith@disroot.org>2021-03-02 21:55:35 +0530
committerAbhijith PA <abhijith@disroot.org>2021-03-02 21:55:35 +0530
commitcb1cbaf87619be02e71c0723b820095aa38572ca (patch)
tree9632936ca97509cfe1eb485dea89431970c86790
parentb90a1fa18e57a13ac4d02836193eea43efa05f46 (diff)
Reserve DLA-2579-1 for spip
Diffstat
-rw-r--r--data/DLA/list2
-rw-r--r--data/dla-needed.txt4
2 files changed, 2 insertions, 4 deletions
diff --git a/data/DLA/list b/data/DLA/list
index 19cade3857..1fc3ae5131 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,5 @@
+[02 Mar 2021] DLA-2579-1 spip - security update
+ [stretch] - spip 3.1.4-4~deb9u4+deb9u1
[01 Mar 2021] DLA-2578-1 thunderbird - security update
{CVE-2021-23968 CVE-2021-23969 CVE-2021-23973 CVE-2021-23978}
[stretch] - thunderbird 1:78.8.0-1~deb9u1
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 98fb0908a2..1b9b2c928c 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -122,10 +122,6 @@ shiro
NOTE: 20201004: Sent additional request to upstream dev list; stil no response. (roberto)
NOTE: 20201220: Upstream has responded. Working with them to backport fixes. (roberto)
--
-spip (Abhijith PA)
- NOTE: 20210228: maintainer doesn't want to work on this update. (utkarsh)
- NOTE: 20210228: a DSA is already out; check against the patch uploaded. (utkarsh)
---
spotweb
NOTE: 20201220: The affected code uses string concatenation to construct a SQL query.
NOTE: 20201220: Upstream's "fix" is to blacklist all the "bad" SQL commands. (roberto)

© 2014-2024 Faster IT GmbH | imprint | privacy policy