diff options
author | Emilio Pozuelo Monfort <pochu@debian.org> | 2020-07-10 19:43:05 +0200 |
---|---|---|
committer | Emilio Pozuelo Monfort <pochu@debian.org> | 2020-07-10 19:43:05 +0200 |
commit | a9ac1f156ba7bebe299ea6fc64ae77a03405890d (patch) | |
tree | 058bc1b85c563b8b89699525c9225dbcdffdd6fc | |
parent | 832fa53366a851a0f493790e265ecae66d2d3848 (diff) |
Track proposed updates for batik via {stretch,buster}-pu
-rw-r--r-- | data/CVE/2019.list | 2 | ||||
-rw-r--r-- | data/dla-needed.txt | 2 | ||||
-rw-r--r-- | data/next-oldstable-point-update.txt | 2 | ||||
-rw-r--r-- | data/next-point-update.txt | 2 |
4 files changed, 6 insertions, 2 deletions
diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 091dfe6d4b..293c46c450 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -8379,6 +8379,8 @@ CVE-2019-17567 CVE-2019-17566 [SSRF vulnerability] RESERVED - batik <unfixed> (bug #964510) + [buster] - batik <no-dsa> (Minor issue, will be fixed via point update) + [stretch] - batik <no-dsa> (Minor issue, will be fixed via point update) NOTE: https://www.openwall.com/lists/oss-security/2020/06/15/2 NOTE: patch: http://svn.apache.org/viewvc?view=revision&revision=1871084 NOTE: corresponding bug: https://issues.apache.org/jira/browse/BATIK-1276 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 134c0a72d4..afebef779b 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -21,8 +21,6 @@ ansible NOTE: 20200508: bam: Upstream fix was reverted - https://github.com/ansible/ansible/pull/68983 NOTE: 20200508: bam: See https://github.com/ansible/ansible/issues/67794 -- -batik (Emilio) --- cacti (Abhijith PA) NOTE: 20200529: A patch need to be cooked up. Upstream patch not fit for jessie version (abhijith) NOTE: 20200620: WIP (abhijith) diff --git a/data/next-oldstable-point-update.txt b/data/next-oldstable-point-update.txt index b1921691ad..d552335a37 100644 --- a/data/next-oldstable-point-update.txt +++ b/data/next-oldstable-point-update.txt @@ -219,3 +219,5 @@ CVE-2019-1010006 [stretch] - atril 1.16.1-2+deb9u2 CVE-2019-11459 [stretch] - atril 1.16.1-2+deb9u2 +CVE-2019-17566 + [stretch] - batik 1.8-4+deb9u2 diff --git a/data/next-point-update.txt b/data/next-point-update.txt index 55a02acbb5..591b149bf1 100644 --- a/data/next-point-update.txt +++ b/data/next-point-update.txt @@ -178,3 +178,5 @@ CVE-2020-15393 [buster] - linux 4.19.131-1 CVE-2018-20669 [buster] - linux 4.19.131-1 +CVE-2019-17566 + [buster] - batik 1.10-2+deb10u1 |