diff options
author | Abhijith PA <abhijith@disroot.org> | 2021-03-02 21:55:35 +0530 |
---|---|---|
committer | Abhijith PA <abhijith@disroot.org> | 2021-03-02 21:55:35 +0530 |
commit | cb1cbaf87619be02e71c0723b820095aa38572ca (patch) | |
tree | 9632936ca97509cfe1eb485dea89431970c86790 | |
parent | b90a1fa18e57a13ac4d02836193eea43efa05f46 (diff) |
Reserve DLA-2579-1 for spip
-rw-r--r-- | data/DLA/list | 2 | ||||
-rw-r--r-- | data/dla-needed.txt | 4 |
2 files changed, 2 insertions, 4 deletions
diff --git a/data/DLA/list b/data/DLA/list index 19cade3857..1fc3ae5131 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,5 @@ +[02 Mar 2021] DLA-2579-1 spip - security update + [stretch] - spip 3.1.4-4~deb9u4+deb9u1 [01 Mar 2021] DLA-2578-1 thunderbird - security update {CVE-2021-23968 CVE-2021-23969 CVE-2021-23973 CVE-2021-23978} [stretch] - thunderbird 1:78.8.0-1~deb9u1 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 98fb0908a2..1b9b2c928c 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -122,10 +122,6 @@ shiro NOTE: 20201004: Sent additional request to upstream dev list; stil no response. (roberto) NOTE: 20201220: Upstream has responded. Working with them to backport fixes. (roberto) -- -spip (Abhijith PA) - NOTE: 20210228: maintainer doesn't want to work on this update. (utkarsh) - NOTE: 20210228: a DSA is already out; check against the patch uploaded. (utkarsh) --- spotweb NOTE: 20201220: The affected code uses string concatenation to construct a SQL query. NOTE: 20201220: Upstream's "fix" is to blacklist all the "bad" SQL commands. (roberto) |