diff options
author | Adrian Bunk <bunk@debian.org> | 2021-11-21 21:22:14 +0200 |
---|---|---|
committer | Adrian Bunk <bunk@debian.org> | 2021-11-21 21:22:14 +0200 |
commit | d17b959b0d451a217e080cbb8db79c5ae9035e2d (patch) | |
tree | 8630a910d794e69d39c13415e36942361ae771ec | |
parent | 20ace7fb648b9284facf8bc8a6b8f24e47727f00 (diff) |
Postpone CVE-2021-42917 for stretch
-rw-r--r-- | data/CVE/2021.list | 1 | ||||
-rw-r--r-- | data/dla-needed.txt | 2 |
2 files changed, 1 insertions, 2 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 6dba6de8a4..485237525e 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -2689,6 +2689,7 @@ CVE-2021-42917 (Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows at - kodi 2:19.3+dfsg1-1 (bug #998419) [bullseye] - kodi <no-dsa> (Minor issue) [buster] - kodi <no-dsa> (Minor issue) + [stretch] - kodi <postponed> (no point in fixing this when the more severe CVE-2017-5982 is ignored) - xbmc <removed> NOTE: https://github.com/xbmc/xbmc/commit/80c8138c09598e88b4ddb6dbb279fa193bbb3237 NOTE: https://github.com/xbmc/xbmc/issues/20305 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 03cbee15c0..732d67577e 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -48,8 +48,6 @@ gpac (Roberto C. Sánchez) NOTE: 20211101: coordinating with secteam for s-p-u since stretch/buster versions match (roberto) NOTE: 20211120: received OK from secteam for buster update, working on stretch/buster in parallel (roberto) -- -kodi (Adrian Bunk) --- libgit2 (Utkarsh) NOTE: 20211029: CVE-2018-10887/CVE-2018-10888/CVE-2018-15501 were fixed NOTE: 20211029: for jessie in DLA-1477-1 and should also be fixed in stretch |