Re: [EXTERNAL] TRA-2021-14/CVE-2021-20095 status

Hi Sylvain, Those CVEs were registered in error and were requested to be listed as REJECTED. There are no plans to re-register these issues under new identifiers. Regards, Rajiv On Mon, Oct 18, 2021 at 8:54 AM Sylvain Beucler wrote: > *** CAUTION: This email was sent from an EXTERNAL source. T

TRA-2021-14/CVE-2021-20095 status

Hello, I'm part of the Debian LTS Team and we would like to track which shipped versions of python-babel are affected by the vulnerability described in your advisory TRA-2021-14. https://fr.tenable.com/security/research/tra-2021-14 The Advisory Timeline shows that CVE-2021-20095 was assigned

Re: [SECURITY] [DLA 2743-1] amd64-microcode security update

Utkarsh Gupta writes: > Hello, > > On Thu, Oct 14, 2021 at 8:19 PM wrote: >> Since the published date of the Debian LTS Advisory (DLA-2743-1), to this >> point >> in time, the upgraded package fails to be discovered by "aptitude update". >> >> My investigation has found that the expected upgrad

Re: DLA-2743-1 amd64-microcode incomplete

Hi Philipp, On Mon, Aug 23, 2021 at 2:42 PM Philipp Hahn wrote: > amd64-micocode for > looks incomplete: > > The source page > > lists > > stret

Re: [SECURITY] [DLA 2743-1] amd64-microcode security update

Hello, On Thu, Oct 14, 2021 at 8:19 PM wrote: > Since the published date of the Debian LTS Advisory (DLA-2743-1), to this > point > in time, the upgraded package fails to be discovered by "aptitude update". > > My investigation has found that the expected upgraded package, > "amd64-microcode_3.2