[Secure-testing-commits] r47439 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Dec 26 10:14:29 UTC 2016
Author: jmm
Date: 2016-12-26 10:14:29 +0000 (Mon, 26 Dec 2016)
New Revision: 47439
Modified:
data/CVE/list
Log:
mark joomla as NFU, the inactive ITP was closed and for all practical purposes
joomla will not enter the archive for DFSG-freeness and security reasons
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-26 10:06:12 UTC (rev 47438)
+++ data/CVE/list 2016-12-26 10:14:29 UTC (rev 47439)
@@ -2648,11 +2648,11 @@
NOTE: https://github.com/mapserver/mapserver/pull/4928
NOTE: https://github.com/mapserver/mapserver/pull/5356
CVE-2016-9838 (An issue was discovered in components/com_users/models/registration.php ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2016-9837 (An issue was discovered in ...)
TODO: check
CVE-2016-9836 (The file scanning mechanism of JFilterInput::isFileSafe() in Joomla! ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2016-9835 (Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x ...)
TODO: check
CVE-2016-9834
@@ -11079,9 +11079,9 @@
CVE-2016-8871 (In Botan 1.11.29 through 1.11.32, RSA decryption with certain padding ...)
- botan1.10 <not-affected> (Only affects 1.11.29 through 1.11.32)
CVE-2016-8870 (The register method in the UsersModelRegistration class in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2016-8869 (The register method in the UsersModelRegistration class in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2016-8868
RESERVED
CVE-2016-8867 (Docker Engine 1.12.2 enabled ambient capabilities with misconfigured ...)
@@ -35165,7 +35165,7 @@
NOTE: http://web.archive.org/web/20160329044421/http://roundcube.net/news/2015/12/26/updates-1.1.4-and-1.0.8-released
NOTE: https://github.com/roundcube/roundcubemail/commit/10e5192a2b1bc90ec137f5e69d0aa072c1210d6d
CVE-2015-8769 (SQL injection vulnerability in Joomla! 3.x before 3.4.7 allows ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2016-1711 (WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google ...)
{DSA-3637-1}
- chromium-browser 52.0.2743.82-1
@@ -42716,7 +42716,7 @@
CVE-2015-7886 (NetApp Data ONTAP before 8.2.4P1, when 7-Mode and HTTP access are ...)
NOT-FOR-US: NetApp
CVE-2015-7899 (The com_content component in Joomla! 3.x before 3.4.5 does not ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2015-7883
RESERVED
CVE-2015-7882
@@ -42803,11 +42803,11 @@
CVE-2015-7860 (Stack-based buffer overflow in the agent in Persistent Accelerite ...)
NOT-FOR-US: Persistent Accelerite Radia
CVE-2015-7859 (The com_contenthistory component in Joomla! 3.2 before 3.4.5 does not ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2015-7858 (SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2015-7857 (SQL injection vulnerability in the getListQuery function in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2015-7856 (OpenNMS has a default password of rtc for the rtc account, which makes ...)
TODO: check
CVE-2015-7855
@@ -44542,7 +44542,7 @@
[jessie] - owncloud-client <not-affected> (not compiled with a Qt release greater than 5.3.x)
NOTE: https://owncloud.org/security/advisory/?id=oc-sa-2015-016
CVE-2015-7297 (SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2015-XXXX [Privilege escalation via core-gui]
- core-network <unfixed> (bug #799756)
NOTE: http://pf.itd.nrl.navy.mil/pipermail/core-users/2015-August/001837.html
@@ -96147,7 +96147,7 @@
CVE-2013-5584
RESERVED
CVE-2013-5583 (Cross-site scripting (XSS) vulnerability in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-5582
RESERVED
NOT-FOR-US: Ammyy Admin
@@ -96213,7 +96213,7 @@
- ngircd <not-affected> (only affects 20, 20.1, and 20.2)
NOTE: http://arthur.barton.de/pipermail/ngircd-ml/2013-August/000652.html
CVE-2013-5576 (administrator/components/com_media/helpers/media.php in the media ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-5575
REJECTED
CVE-2013-5568 (The auto-update implementation in Cisco Adaptive Security Appliance ...)
@@ -101109,7 +101109,7 @@
CVE-2013-3720 (Cross-site scripting (XSS) vulnerability in widget_remove.php in the ...)
NOT-FOR-US: Wordpress plugin Feedweb
CVE-2013-3719 (Cross-site scripting (XSS) vulnerability in the aiContactSafe ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3718 [evince missing check on number of pages]
RESERVED
- evince 3.10.0-1
@@ -102121,7 +102121,7 @@
CVE-2013-3268 (Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after ...)
NOT-FOR-US: Novell iManager
CVE-2013-3267 (Cross-site scripting (XSS) vulnerability in the highlighter plugin in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3266 (The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the ...)
{DSA-2672-1}
- kfreebsd-9 9.0-11 (bug #706414)
@@ -102180,7 +102180,7 @@
CVE-2013-3243 (Unspecified vulnerability in OpenText/IXOS ECM for SAP NetWeaver ...)
NOT-FOR-US: SAP NetWeaver
CVE-2013-3242 (plugins/system/remember/remember.php in Joomla! 2.5.x before 2.5.10 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3241 (export.php (aka the export script) in phpMyAdmin 4.x before 4.0.0-rc3 ...)
- phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2013-3240 (Directory traversal vulnerability in the Export feature in phpMyAdmin ...)
@@ -102595,13 +102595,13 @@
CVE-2013-3060 (The web console in Apache ActiveMQ before 5.8.0 does not require ...)
- activemq <not-affected> (Web console not provided in Debian package, see #702670)
CVE-2013-3059 (Cross-site scripting (XSS) vulnerability in the Voting plugin in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3058 (Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3057 (Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3056 (Joomla! 2.5.x before 2.5.10 and 3.0.x before 3.0.4 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-3055 (Lexmark Markvision Enterprise before 1.8 provides a diagnostic ...)
NOT-FOR-US: Lexmark Markvision Enterprise
CVE-2013-3054
@@ -107673,11 +107673,11 @@
CVE-2013-1456
RESERVED
CVE-2013-1455 (Joomla! 3.0.x through 3.0.2 allows attackers to obtain sensitive ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-1454 (Joomla! 3.0.x through 3.0.2 allows attackers to obtain sensitive ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-1453 (plugins/system/highlight/highlight.php in Joomla! 3.0.x through 3.0.2 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2013-1452
RESERVED
CVE-2013-4696
@@ -113216,7 +113216,7 @@
CVE-2012-5828
RESERVED
CVE-2012-5827 (Joomla! 2.5.x before 2.5.8 and 3.0.x before 3.0.2 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-5826
RESERVED
CVE-2011-5243 (TwitterOAuth does not verify that the server hostname matches a domain ...)
@@ -116847,7 +116847,7 @@
CVE-2012-4532 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: Joomla addon
CVE-2012-4531 (Cross-site scripting (XSS) vulnerability in Joomla! 2.5.x before 2.5.7 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-4530 (The load_script function in fs/binfmt_script.c in the Linux kernel ...)
- linux 3.2.35-1
- linux-2.6 <removed>
@@ -118792,9 +118792,9 @@
CVE-2012-3830 (Cross-site scripting (XSS) vulnerability in decoda/templates/video.php ...)
NOT-FOR-US: Decoda not in Debian
CVE-2012-3829 (Joomla! 2.5.3 allows remote attackers to obtain the installation path ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-3828 (Cross-site scripting (XSS) vulnerability in Joomla! 2.5.3 allows ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-3827
RESERVED
CVE-2011-5096 (Stack-based buffer overflow in cstore.exe in the Media Application ...)
@@ -121493,9 +121493,9 @@
- mysql-5.1 <removed>
- mysql-5.5 5.5.24+dfsg-1
CVE-2012-2748 (Unspecified vulnerability in Joomla! 2.5.x before 2.5.5 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-2747 (Unspecified vulnerability in Joomla! 2.5.x before 2.5.5 allows remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-2746 (389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server ...)
- 389-ds-base <not-affected> (Fixed before initial upload)
CVE-2012-2745 (The copy_creds function in kernel/cred.c in the Linux kernel before ...)
@@ -124447,9 +124447,9 @@
CVE-2012-1613 (Cross-site scripting (XSS) vulnerability in edit_one_pic.php in ...)
NOT-FOR-US: Coppermine
CVE-2012-1612 (Cross-site scripting (XSS) vulnerability in the update manager in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1611 (Joomla! 2.5.x before 2.5.4 does not properly check permissions, which ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1610 (Integer overflow in the GetEXIFProperty function in magick/property.c ...)
{DSA-2462-1}
- imagemagick 8:6.7.4.0-4 (bug #667635)
@@ -124479,9 +124479,9 @@
- phppgadmin 5.0.4-1
[squeeze] - phppgadmin <no-dsa> (Minor issue, will be fixed through a point update)
CVE-2012-1599 (Joomla! 1.5.x before 1.5.26 does not properly check permissions, which ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1598 (Joomla! 1.5.x before 1.5.26 has unspecified impact and attack vectors ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1597 (Cross-site scripting (XSS) vulnerability in the textEncode function in ...)
NOT-FOR-US: eZ Publish
CVE-2012-1596 (The mp2t_process_fragmented_payload function in ...)
@@ -124568,10 +124568,10 @@
NOT-FOR-US: YVS
CVE-2012-1563
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1562
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1561 (Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x ...)
NOT-FOR-US: Drupal Finder
CVE-2012-1560
@@ -125592,9 +125592,9 @@
{DSA-2500-1}
- mantis 1.2.10-1 (low; bug #669924)
CVE-2012-1117 (Cross-site scripting (XSS) vulnerability in Joomla! 2.5.0 and 2.5.1 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1116 (SQL injection vulnerability in Joomla! 1.7.x and 2.5.x before 2.5.2 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-1115
RESERVED
- phpldapadmin 1.2.2-3 (low; bug #662050)
@@ -126324,11 +126324,11 @@
CVE-2012-0838 (Apache Struts 2 before 2.2.3.1 evaluates a string as an OGNL ...)
- libstruts1.2-java <not-affected> (struts 2 issue)
CVE-2012-0837 (Joomla! 1.7.x before 1.7.5 and 2.5.x before 2.5.1 allows attackers to ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0836 (Unspecified vulnerability in Joomla! 1.7.x before 1.7.5 allows ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0835 (Unspecified vulnerability in Joomla! 1.7.x before 1.7.5 and 2.5.x ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0834 (Cross-site scripting (XSS) vulnerability in lib/QueryRender.php in ...)
- phpldapadmin 1.2.2-1 (low; bug #658907)
[squeeze] - phpldapadmin <no-dsa> (Minor issue)
@@ -126368,13 +126368,13 @@
[squeeze] - libvpx <not-affected> (Introduced in 0.9.7)
NOTE: http://blog.webmproject.org/2012/01/vp8-codec-sdk-duclair-released.html
CVE-2012-0822 (Cross-site scripting (XSS) vulnerability in Joomla! 1.6 and 1.7.x ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0821 (Unspecified vulnerability in Joomla! 1.6.x and 1.7.x before 1.7.4 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0820 (Cross-site scripting (XSS) vulnerability in Joomla! 1.6.x and 1.7.x ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0819 (Unspecified vulnerability in Joomla! 1.6.x and 1.7.x before 1.7.4 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2012-0818 (RESTEasy before 2.3.1 allows remote attackers to read arbitrary files ...)
NOT-FOR-US: RESTEasy framework for JBoss
CVE-2012-0817 (Memory leak in smbd in Samba 3.6.x before 3.6.3 allows remote ...)
@@ -128208,19 +128208,19 @@
NOT-FOR-US: Ariadne CMS not in Debian
CVE-2011-4937
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-4936
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-4935
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-4934
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-4933
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-4932 (Eval injection vulnerability in ...)
NOT-FOR-US: ImpressPages CMS not in Debian
CVE-2011-4931
@@ -132891,7 +132891,7 @@
NOTE: http://seclists.org/fulldisclosure/2011/Oct/10
CVE-2011-3595
RESERVED
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-3594 (The g_markup_escape_text function in the SILC protocol plug-in in ...)
- pidgin 2.10.1-1 (unimportant)
[squeeze] - pidgin 2.7.3-1+squeeze2
@@ -133344,9 +133344,9 @@
CVE-2010-4839 (SQL injection vulnerability in the Event Registration plugin 5.32 and ...)
NOT-FOR-US: Wordpress plugin Event Registration
CVE-2010-4838 (SQL injection vulnerability in the JSupport (com_jsupport) component ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2010-4837 (Cross-site scripting (XSS) vulnerability in the JSupport ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2010-4836 (Cross-site scripting (XSS) vulnerability in register.html in PHPShop ...)
NOT-FOR-US: PHPShop
CVE-2010-4835 (Directory traversal vulnerability in index.php in OneOrZero AIMS 2.6.0 ...)
@@ -135086,13 +135086,13 @@
CVE-2011-2893 (The DataPilot feature in IBM Lotus Symphony 3 before FP3 allows ...)
NOT-FOR-US: IBM Lotus Symphony
CVE-2011-2892 (Joomla! 1.6.x before 1.6.2 does not prevent page rendering inside a ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2891 (Joomla! 1.6.x before 1.6.2 allows remote attackers to obtain sensitive ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2890 (The MediaViewMedia class in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2889 (templates/system/error.php in Joomla! before 1.5.23 might allow remote ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2888 (IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a ...)
NOT-FOR-US: IBM Lotus Symphony
CVE-2011-2887 (IBM Lotus Symphony 3 before FP3 on Linux allows remote attackers to ...)
@@ -135681,7 +135681,7 @@
CVE-2011-2711 (Cross-site scripting (XSS) vulnerability in the print_fileinfo ...)
NOT-FOR-US: cgit
CVE-2011-2710 (Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2709 (libgssapi and libgssglue before 0.4 do not properly check privileges, ...)
- libgssglue 0.4-1 (low; bug #670256)
[squeeze] - libgssglue <no-dsa> (Minor issue in Squeeze)
@@ -136227,7 +136227,7 @@
[squeeze] - dokuwiki 0.0.20091225c-10+squeeze2
[lenny] - dokuwiki 0.0.20080505-4+lenny3
CVE-2011-2509 (Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2508 (Directory traversal vulnerability in libraries/display_tbl.lib.php in ...)
{DSA-2286-1}
- phpmyadmin 4:3.4.3.1-1
@@ -136300,7 +136300,7 @@
{DSA-2281-1}
- opie <removed> (bug #631344)
CVE-2011-2488 (Joomla! before 1.5.23 does not properly check for errors, which allows ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2011-2487
RESERVED
NOT-FOR-US: Apache CXF
@@ -142051,7 +142051,7 @@
- php5 5.3.5-1 (unimportant)
NOTE: requires attacker to be able to execute code already
CVE-2010-4696 (Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2009-5051 (Hastymail2 before RC 8 does not set the secure flag for the session ...)
- hastymail <removed>
CVE-2011-0493 (Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha might allow ...)
@@ -144928,7 +144928,7 @@
- imagemagick 8:6.6.0.4-3 (low; bug #601824)
[lenny] - imagemagick 7:6.3.7.9.dfsg2-1~lenny4
CVE-2010-4166 (Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2010-4165 (The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel ...)
- linux-2.6 2.6.32-28
[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.28)
@@ -146159,7 +146159,7 @@
CVE-2010-3713 (rss.php in UseBB before 1.0.11 does not properly handle forum ...)
NOT-FOR-US: UseBB
CVE-2010-3712 (Cross-site scripting (XSS) vulnerability in Joomla! 1.5.x before ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2010-3711 (libpurple in Pidgin before 2.7.4 does not properly validate the return ...)
- pidgin 2.7.4-1
[squeeze] - pidgin 2.7.3-1+squeeze1
@@ -149498,7 +149498,7 @@
CVE-2010-2536 (Multiple cross-site scripting (XSS) vulnerabilities in rekonq 0.5 and ...)
- rekonq 0.5.0-2 (bug #593300)
CVE-2010-2535 (Multiple cross-site scripting (XSS) vulnerabilities in the Back End in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2010-2534 (The NetworkSyncCommandQueue function in network/network_command.cpp in ...)
- openttd 1.0.3-1
[lenny] - openttd <not-affected> (Introduced in 1.0.1)
@@ -151884,7 +151884,7 @@
CVE-2010-1650 (IBM WebSphere Application Server (WAS) 6.0.x before 6.0.2.41, 6.1.x ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2010-1649 (Multiple cross-site scripting (XSS) vulnerabilities in the back end in ...)
- - joomla <itp> (bug #571794)
+ NOT-FOR-US: Joomla
CVE-2010-1648 (Cross-site request forgery (CSRF) vulnerability in the login interface ...)
- mediawiki 1:1.15.4-1 (bug #585918; low)
[lenny] - mediawiki 1:1.12.0-2lenny6
More information about the Secure-testing-commits
mailing list