From fd2d4cdc628cbdfb89c4f0517680bc00d349532f Mon Sep 17 00:00:00 2001 From: Adrian Bunk Date: Sun, 31 Oct 2021 20:44:24 +0200 Subject: Reserve DLA-2805-1 for libmspack --- data/CVE/2019.list | 1 - data/DLA/list | 3 +++ data/dla-needed.txt | 2 -- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/data/CVE/2019.list b/data/CVE/2019.list index de1768ae28..8f13b4d9f0 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -29671,7 +29671,6 @@ CVE-2019-1010306 (Slanger 0.6.0 is affected by: Remote Code Execution (RCE). The CVE-2019-1010305 (libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: I ...) {DLA-1895-1} - libmspack 0.10.1-1 - [stretch] - libmspack (Minor issue) NOTE: https://github.com/kyz/libmspack/commit/2f084136cfe0d05e5bf5703f3e83c6d955234b4d NOTE: https://github.com/kyz/libmspack/issues/27 CVE-2019-1010304 (Saleor Issue was introduced by merge commit: e1b01bad0703afd08d297ed3f ...) diff --git a/data/DLA/list b/data/DLA/list index 0463b4b57c..c7f8b36c94 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[31 Oct 2021] DLA-2805-1 libmspack - security update + {CVE-2019-1010305} + [stretch] - libmspack 0.5-1+deb9u4 [31 Oct 2021] DLA-2804-1 libsdl1.2 - security update {CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 CVE-2019-13616} [stretch] - libsdl1.2 1.2.15+dfsg1-4+deb9u1 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index f85adc1bfc..c878cbd303 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -56,8 +56,6 @@ libgit2 (Utkarsh) NOTE: 20211029: taking this with my maintainer hat on; will investigate NOTE: 20211029: and TAL later next week. (utkarsh) -- -libmspack (Adrian Bunk) --- libssh2 (Adrian Bunk) -- linux (Ben Hutchings) -- cgit v1.2.3