ksh / CVE-2019-14868

To: debian-lts@lists.debian.org
Subject: ksh / CVE-2019-14868
From: Brian May <bam@debian.org>
Date: Mon, 13 Jul 2020 08:01:00 +1000
Message-id: <[🔎] 87r1tgz943.fsf@silverfish.pri>

Is dla-needed.txt for Jessie or Stretch now?

ksh was removed from dla-needed.txt for Stretch and classified "minor":

https://salsa.debian.org/security-tracker-team/security-tracker/commit/87322fcf

Then it was added again:

https://salsa.debian.org/security-tracker-team/security-tracker/commit/59a9cd9dca3afc830fea869d12baf2f3d7c21126

Should we mark it as ignored in Stretch also? Or maybe the reason (as
given in the commit message when ksh was first removed) was wrong?

https://salsa.debian.org/security-tracker-team/security-tracker/commit/b72cc677e719d37f5f3378d616d9cb53315db927
-- 
Brian May <bam@debian.org>

Reply to:

Follow-Ups:
- Re: ksh / CVE-2019-14868
  - From: Sylvain Beucler <beuc@beuc.net>

Prev by Date: Suggestions for handling of condor update
Next by Date: Re: ksh / CVE-2019-14868
Previous by thread: Re: Suggestions for handling of condor update
Next by thread: Re: ksh / CVE-2019-14868
Index(es):
- Date
- Thread