summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAdrian Bunk <bunk@debian.org>2021-11-30 23:29:07 +0000
committerAdrian Bunk <bunk@debian.org>2021-11-30 23:29:07 +0000
commitfae8396c3147aab883940da1b74fed4da291307b (patch)
treefcaecbab0e010bedb08b8f41e41a23ac6d1dd162
parent9da3e66bf2732db690867a512486e851499a4189 (diff)
Reserve DLA-2834-1 for uriparser
Diffstat
-rw-r--r--data/CVE/2018.list1
-rw-r--r--data/DLA/list3
-rw-r--r--data/dla-needed.txt2
3 files changed, 3 insertions, 3 deletions
diff --git a/data/CVE/2018.list b/data/CVE/2018.list
index dc05bb6251..aa1feb8072 100644
--- a/data/CVE/2018.list
+++ b/data/CVE/2018.list
@@ -1422,7 +1422,6 @@ CVE-2018-20722
CVE-2018-20721 (URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bound ...)
{DLA-1682-1}
- uriparser 0.9.1-1 (low)
- [stretch] - uriparser <no-dsa> (Minor issue)
NOTE: https://github.com/uriparser/uriparser/commit/cef25028de5ff872c2e1f0a6c562eb3ea9ecbce4
CVE-2018-20720 (ABB Relion 630 devices 1.1 before 1.1.0.C0, 1.2 before 1.2.0.B3, and 1 ...)
NOT-FOR-US: ABB Relion 630 devices
diff --git a/data/DLA/list b/data/DLA/list
index 37863131c9..ea207a58cb 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,6 @@
+[30 Nov 2021] DLA-2834-1 uriparser - security update
+ {CVE-2018-20721}
+ [stretch] - uriparser 0.8.4-1+deb9u2
[30 Nov 2021] DLA-2833-1 rsync - security update
{CVE-2018-5764}
[stretch] - rsync 3.1.2-1+deb9u3
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 8b67c14ee3..2ea6719cdd 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -100,8 +100,6 @@ samba (Anton)
thunderbird (Emilio)
NOTE: 20211122: blocked on toolchain backports (pochu)
--
-uriparser (Adrian Bunk)
---
wireshark (Adrian Bunk)
NOTE: 20211119: Check https://salsa.debian.org/security-tracker-team/security-tracker/commit/d55b7eff90db8487e20106c2c09e61293a477e89 (lamby)
--

© 2014-2024 Faster IT GmbH | imprint | privacy policy