diff options
| author | Adrian Bunk <bunk@debian.org> | 2021-10-31 10:58:04 +0200 |
|---|---|---|
| committer | Adrian Bunk <bunk@debian.org> | 2021-10-31 10:59:23 +0200 |
| commit | 61823d24e0299e74e7029e4de9cd7a4837bd97f1 (patch) | |
| tree | 0e64c1430982404c3eeb97ebf3ff9a2b3eea7d43 | |
| parent | 16db53fd9d0ff17b10ba01905503882052d61558 (diff) | |
Reserve DLA-2803-1 for libsdl2
| -rw-r--r-- | data/CVE/2017.list | 1 | ||||
| -rw-r--r-- | data/CVE/2019.list | 1 | ||||
| -rw-r--r-- | data/DLA/list | 3 | ||||
| -rw-r--r-- | data/dla-needed.txt | 2 |
4 files changed, 3 insertions, 4 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 15d9ba2657..a0bd0e863f 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -45513,7 +45513,6 @@ CVE-2017-2889 (An exploitable Denial of Service vulnerability exists in the API CVE-2017-2888 (An exploitable integer overflow vulnerability exists when creating a n ...) {DLA-1714-2} - libsdl2 2.0.6+dfsg1-4 (bug #878264) - [stretch] - libsdl2 <no-dsa> (Minor issue) [jessie] - libsdl2 <no-dsa> (Minor issue) - libsdl1.2 <not-affected> (Issue not present, SDL_CreateRGBSurface contains further check for too large width or height) NOTE: https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0395 diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 07593a23dc..d5989fb27e 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -36394,7 +36394,6 @@ CVE-2019-7637 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 [buster] - libsdl1.2 <no-dsa> (Minor issue) [stretch] - libsdl1.2 <no-dsa> (Minor issue) - libsdl2 2.0.6+dfsg1-4 (bug #924610) - [stretch] - libsdl2 <no-dsa> (Minor issue) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4497 NOTE: https://hg.libsdl.org/SDL/rev/9b0e5c555c0f (SDL-1.2) NOTE: https://hg.libsdl.org/SDL/rev/32075e9e2135 (SDL-1.2) diff --git a/data/DLA/list b/data/DLA/list index c4296ce934..f9e2a253d3 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[31 Oct 2021] DLA-2803-1 libsdl2 - security update + {CVE-2017-2888 CVE-2019-7637} + [stretch] - libsdl2 2.0.5+dfsg1-2+deb9u2 [30 Oct 2021] DLA-2802-1 elfutils - security update {CVE-2018-16062 CVE-2018-16402 CVE-2018-18310 CVE-2018-18520 CVE-2018-18521 CVE-2019-7150 CVE-2019-7665} [stretch] - elfutils 0.168-1+deb9u1 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 172924e32f..a7701179cc 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -58,8 +58,6 @@ libgit2 (Utkarsh) -- libsdl1.2 (Adrian Bunk) -- -libsdl2 (Adrian Bunk) --- linux (Ben Hutchings) -- linux-4.19 (Ben Hutchings) |