Bug#971367: mariadb-10.5 should not embed wolfssl

Source: mariadb-10.5 Version: 1:10.5.5-1 Tags: security Severity: serious Justification: unsupportable by the Debian security team Hi Otto, I've hinted that the situation about an embedded ssl library might be suboptimal earlier. Since then, I've checked (using the buildd logs) that indeed mariad

Bug#1034510: bullseye-pu: package protobuf/3.12.4-1+deb11u1

x CVE-2021-22570 (NULL pointer dereference) + * Fix CVE-2022-1941 (memory DoS) + + -- Helmut Grohne Tue, 04 Apr 2023 11:41:41 +0200 + protobuf (3.12.4-1) unstable; urgency=medium * New upstream release. diff --minimal -Nru protobuf-3.12.4/debian/elpa-test protobuf-3.12.4/debian/elpa

Bug#737048: udd: import CVE identifiers from secure-testing SVN

Package: qa.debian.org Severity: wishlist User: qa.debian@packages.debian.org Usertags: udd X-Debbugs-CC: debian-security@lists.debian.org It would be nice to have UDD import parts of the secure-testing SVN repository maintained by the Debian security team. The biggest benefit I see is that it