New Debian yajl 2.1.0-3+deb10u2 fixes: This update addresses the following issues: Debian update 2.1.0-3+deb10u2 2.1.0-3+deb10u2 (Tue, 11 Jul 2023 19:13:09 +0200) [Tobias Frost] * Non-maintainer upload by the LTS Security Team. * Cherry pick John's CVE fixes from 2.1.0-4 * Fix for CVE-2023-33460 was incomplete, also fix the second memory leak. [John Stamp] * Patch CVE-2017-16516 and CVE-2022-24795
--- mirror/ftp/pool/main/y/yajl/yajl_2.1.0-3+deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-4/source/yajl_2.1.0-3+deb10u2.dsc @@ -1,3 +1,13 @@ +2.1.0-3+deb10u2 [Tue, 11 Jul 2023 19:13:09 +0200] Tobias Frost <tobi@debian.org>: + + [Tobias Frost] + * Non-maintainer upload by the LTS Security Team. + * Cherry pick John's CVE fixes from 2.1.0-4 + * Fix for CVE-2023-33460 was incomplete, also fix the second memory leak. + + [John Stamp] + * Patch CVE-2017-16516 and CVE-2022-24795 (Closes: #1040036) + 2.1.0-3+deb10u1 [Sun, 02 Jul 2023 13:47:46 +0200] Tobias Frost <tobi@debian.org>: * Non-maintainer upload by the LTS Security Team. <http://piuparts.knut.univention.de/5.0-4/#1441764192087115165>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-4] 3af26f5b23 Bug #56325: yajl 2.1.0-3+deb10u2 doc/errata/staging/yajl.yaml | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) [5.0-4] 0e9a4da3cc Bug #56325: yajl 2.1.0-3+deb10u2 doc/errata/staging/yajl.yaml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x746>