From 10664c543881b06f43aab4aee72f3a07e1cd44b3 Mon Sep 17 00:00:00 2001 From: Adrian Bunk Date: Sun, 31 Oct 2021 18:13:59 +0200 Subject: Reserve DLA-2804-1 for libsdl1.2 --- data/CVE/2019.list | 12 ------------ data/DLA/list | 3 +++ data/dla-needed.txt | 2 -- 3 files changed, 3 insertions(+), 14 deletions(-) diff --git a/data/CVE/2019.list b/data/CVE/2019.list index d5989fb27e..de1768ae28 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -19299,7 +19299,6 @@ CVE-2019-13616 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2. [jessie] - libsdl2 (can be fixed along with more important patches) - libsdl1.2 1.2.15+dfsg2-5 [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) [jessie] - libsdl1.2 (can be fixed along with more important patches) - libsdl2-image 2.0.5+dfsg1-2 (bug #940934) [buster] - libsdl2-image (Minor issue) @@ -36382,7 +36381,6 @@ CVE-2019-7638 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-2536-1 DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4500 @@ -36392,7 +36390,6 @@ CVE-2019-7637 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.6+dfsg1-4 (bug #924610) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4497 NOTE: https://hg.libsdl.org/SDL/rev/9b0e5c555c0f (SDL-1.2) @@ -36405,7 +36402,6 @@ CVE-2019-7636 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-2536-1 DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4499 @@ -36415,7 +36411,6 @@ CVE-2019-7635 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-2536-1 DLA-1865-1 DLA-1861-1 DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) - sdl-image1.2 1.2.12-11 (bug #932755) @@ -36553,7 +36548,6 @@ CVE-2019-7578 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-2536-1 DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4494 @@ -36563,7 +36557,6 @@ CVE-2019-7577 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-2536-1 DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4492 @@ -36575,7 +36568,6 @@ CVE-2019-7576 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) [stretch] - libsdl2 (Minor issue) @@ -36586,7 +36578,6 @@ CVE-2019-7575 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-2536-1 DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4493 @@ -36597,7 +36588,6 @@ CVE-2019-7574 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) [stretch] - libsdl2 (Minor issue) @@ -36609,7 +36599,6 @@ CVE-2019-7573 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) [stretch] - libsdl2 (Minor issue) @@ -36622,7 +36611,6 @@ CVE-2019-7572 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0 {DLA-1714-1 DLA-1713-1} - libsdl1.2 1.2.15+dfsg2-5 (bug #924609) [buster] - libsdl1.2 (Minor issue) - [stretch] - libsdl1.2 (Minor issue) - libsdl2 2.0.10+dfsg1-1 (bug #924610) [buster] - libsdl2 (Minor issue) [stretch] - libsdl2 (Minor issue) diff --git a/data/DLA/list b/data/DLA/list index f9e2a253d3..0463b4b57c 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[31 Oct 2021] DLA-2804-1 libsdl1.2 - security update + {CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 CVE-2019-13616} + [stretch] - libsdl1.2 1.2.15+dfsg1-4+deb9u1 [31 Oct 2021] DLA-2803-1 libsdl2 - security update {CVE-2017-2888 CVE-2019-7637} [stretch] - libsdl2 2.0.5+dfsg1-2+deb9u2 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 66b95e35e7..f85adc1bfc 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -56,8 +56,6 @@ libgit2 (Utkarsh) NOTE: 20211029: taking this with my maintainer hat on; will investigate NOTE: 20211029: and TAL later next week. (utkarsh) -- -libsdl1.2 (Adrian Bunk) --- libmspack (Adrian Bunk) -- libssh2 (Adrian Bunk) -- cgit v1.2.3