Re: [SECURITY] [DLA 2775-1] plib security update

To: debian-lts@lists.debian.org
Subject: Re: [SECURITY] [DLA 2775-1] plib security update
From: Marc SCHAEFER <schaefer@alphanet.ch>
Date: Sat, 2 Oct 2021 14:10:51 +0200
Message-id: <[🔎] 20211002121051.GA17499@alphanet.ch>
In-reply-to: <20211002114533.9C81D4A03EE@thinkpad.localdomain>
References: <20211002114533.9C81D4A03EE@thinkpad.localdomain>

On Sat, Oct 02, 2021 at 01:45:33PM +0200, Anton Gladky wrote:
> Package        : plib
> Version        : 1.8.5-7+deb9u1
> CVE ID         : CVE-2021-38714
> 
> One security issue has been discovered in plib.

Yes, what is the purpose of this library?  This helps planning upgrades.

Other advisories always give a short summary of what the software does.

Actually, I think this is against libplib1, which seems to be:

 Provides a Joystick interface, a simple GUI built on top of OpenGL,
 some standard geometry functions, a sound library and a simple scene
 graph API built on top of OpenGL.

Oh, great, this probably does not run on my servers, so no need to plan
anything.

Thank you for updating DLAs, like DSAs are doing, to add a short summary of the
purpose of the package, and give the correct package name so that it can be
quickly found.

Reply to:

Follow-Ups:
- Re: [SECURITY] [DLA 2775-1] plib security update
  - From: Anton Gladky <gladk@debian.org>

Prev by Date: Debian LTS and ELTS - August 2021
Next by Date: Re: [SECURITY] [DLA 2775-1] plib security update
Previous by thread: Re: Debian LTS and ELTS - September 2021
Next by thread: Re: [SECURITY] [DLA 2775-1] plib security update
Index(es):
- Date
- Thread