December 2018 Archives by date
Starting: Sat Dec 1 07:54:35 GMT 2018
Ending: Mon Dec 31 20:17:42 GMT 2018
Messages: 734
- [Git][security-tracker-team/security-tracker][master] webkitgtk removed from the archive in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixing commit for CVE-2018-19497/sleuthkit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new lxml issue fixed in upstream version 4.2.5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2018-18397/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-6260/nvidia-graphics-drivers
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-15537/ocsinventory-server
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-4040 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19787/lxml assigned by MITRE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1956{5,6,7,8}/dcraw issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new policykit-1 issue, #915332
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2018-19760 as no-dsa for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: add policykit-1
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add assigned CVE-2018-19788/policykit-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add missing attributions.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16868/gnutls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16869/nettle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] axis fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim suricata in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] suricata: Link to fixing commits for some CVE.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] dla: add note for samba
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] claim freerdp (with comment)
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: white-space fix.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: grammar fixes (sigh to myself...).
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add libphp-phpmailer to dsa-needed list
Salvatore Bonaccorso
- Processing c2ad0176d5e01232374a4596d9f8b16f48a15c86 failed
security tracker role
- Processing 7b5a7ada8dbe7a5c6e07f01f61c88949dd06e8a7 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] tomcat9 now in the archive
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: tomcat9 entered the archive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Make clear it is not yet the final patch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-19296/libphp-phpmailer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new k8s issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2018-1002105/kubernetes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-19406/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19824/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs (Metinfo)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] gs n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Several opencv issues fixed in experimental via new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dcraw unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reference merge request for CVE-2018-19788
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: golang-1.7 removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVEExtendFile: treat TEMP-* entries as unique
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] resteasy fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: suricata: Remove no-dsa tags for upcoming DLA.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] suricata: TEMP-0856648-2BC2C9 will be fixed with DLA-1603-1
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Move note for fixed version directly to entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19854/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status on CVE-2018-19854/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-19843/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-19841/wavpack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1984{0,1}/wavpack as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add bug reference for CVE-2018-19841/wavpack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add removed pdns
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-9568/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-9568/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove end-of-life taggend entries for issues after the src:chromium rename
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-19840 & CVE-2018-19841 (wavpack) for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-17939/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two more gitlab issues (CVE-2018-17975 and CVE-2018-17976}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new libsass issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add text about next steps regarding open CVE issues in…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Mark wavpack as fixed
Sebastian Ramacher
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19837/libsass fixed with 3.5.4+20180621~c0a6cf3-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] golang-1.9 removed from the archive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add golang-1.9 to removed-packages list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-7561/resteasy3.0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixing commit for CVE-2018-16862/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-18559/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add notes on fixed versions for CVE-2018-19518/php*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-16869/nettle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fix for CVE-2018-16868/gnutls28 via experimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19134/ghostscript
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] One more CVE was fixed in DSA-4346-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2018-19478/ghostscript
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sort CVE list for DSA-4346-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] [libav LTS triaging] Finish triaging 2016 issues for libav in jessie.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19857/vlc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] [libav LTS triaging] Mark CVE-2016-98{19,20} as unimportant again. Thanks to jmm…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Track proposed update for pdns-recursor via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lighttpd fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new faac issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new mupdf issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16867/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for faac issues, #915763
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-19857/vlc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commits for CVE-2018-19788/policykit-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19911/freeswitch, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19608/mbedtls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove TODO for two reservation duplicates from DWF
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-19608/mbedtls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19876/cairo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-19876/cairo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] polkit DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Four CVEs for hdf5 issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on CVE-2017-17507/hdf5 for upstream fixing status
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track hdf5 fixes which were included in 1.10.3 upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Split CVE-2017-17507/hdf5 to separate bug as not fixed with same set as #884365
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim policykit-1 in dla-needed.txt
Santiago R.R.
- [Git][security-tracker-team/security-tracker][master] new symfony issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 5 commits: Mark CVE-2018-19857/vlc as end-of-life for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new libjpeg issue (might be n/a, needs further checks)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update CVE-2018-19664/libjpeg-turbo as not-affected
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1993{1,2}/binutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-1002105/kubernetes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19865/qtvirtualkeyboard-opensource-src
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-15518/qtbase-opensource-src
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add todo for CVE-2018-19865
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19870/qtbase-opensource-src
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19871/qtimageformats-opensource-src
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19869/qtsvg-opensource-src
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add ghostscript with note on regression
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/cve: CVE-2018-19432 dupe of CVE-2018-13139
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed update
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] ufraw fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mbedtls fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] php7.3 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] okular fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libphp-phpmailer update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reference commit for CVE-2018-19489/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-16867/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19960/onionshare
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19935/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] fix one no-dsa entry
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-4700/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-4700/cups as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update references for CVE-2018-4700/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-4700/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2018-4700 in cups for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-19960 in onionshare for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage lxml for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] Fix source package name for jessie tagged entry in CVE-2018-19960
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-19788/policykit-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1996{1,2}/zen assigned for XSA-275
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 5 commits: CVE-2018-19963/xen assigned for XSA-276
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for four CVEs for gitlab in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-5808/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-4700/cups in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-14615/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-13098/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: openjdk-10 removed from the archive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1966{1,2}: update notes
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] take php
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process three NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-16336/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-18064/cairo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-19532/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-19407/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19857/vlc fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16876/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1604-1 for lxml
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-16876/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Unclaim qtsvg-opensource-src; needs further work/waiting on upstream etc.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20001/libav
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20002/binutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two new mxml issues: CVE-2018-20004 and CVE-2018-20005
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2018-19842 in radare2 for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: claim ghostscript
Lucas Kanashiro
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-19628 as not-affected for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 4 commits: CVE-2018,6912,libav: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Fix CVE-2018-6912/libav: Add status as removed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix status for CVE-2018-6621 and mark it as removed as the status was triaged
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust status for CVE-2018-6392/libav
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-5783
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-6352/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS/php5 status update
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-15889/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes for CVE-2016-8489
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove product association from CVE-2017-1000500
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] php DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two PHP issues unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-12404/nss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version wine/4.0~rc1-1 for #816034
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream bug reference for CVE-2018-19960/onionshare
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: annotate CVE-2018-14774/symfony does not affect jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-19627 as not affected for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 9 commits: CVE-2018-5766,libav: Remove ignored tag.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] add CVE-2018-19158 details
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] update fixed versions for CVE-2018-19158, did not see the embargo there :(
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Remove CVE-2018-19158 entry (mistyped PHP upstream in upstream bug)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixing version via unstable for CVE-2018-7750/paramiko
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-19960/onionshare as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-14320/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-14320/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-1000805/paramiko
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 11 commits: CVE-2018-18828,libav: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19970/phpmyadmin (PMASA-2018-8)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19968/phpmyadmin (PMASA-2018-6)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-19788/policykit-1 in jessie: vulnerable?
Santiago R.R.
- [Git][security-tracker-team/security-tracker][master] Add new firefox issues from mfsa2018-30
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct source package name for mfsa2018-30
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox issues from mfsa2018-29
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox-esr issues from mfsa2018-30 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20060/python-urllib3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19969/phpmyadmin from PMASA-2018-7
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-12404/nss fixed in unstable via new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] jmm taking care of firefox-esr DSA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-18397: Add reference to project-zero bug report
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] qemu issues fixed in unstable via 1:3.1+dfsg-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] record poppler regression fixes
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19876/cairo n/a on stretch and jessie
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19876/cairo: clarify when the problem was introduced
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-16847/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Annotate correctly reference for CVE-2018-16847/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-19665/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new mini-httpd issue (#916190)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark xml-security-c issue (#913136) as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove xml-security-c from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on wireshark update in dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20103/haproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20102/haproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-20103/haproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20102/haproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 14 commits: CVE-2017-9994,libav: Jessie is affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-14623 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1605-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] new issues in singularity and mosquitto
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add spdlog which has a code copy in rapmap
Andreas Tille
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2018-19869/qtsvg-opensource-src no-dsa on jessie
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19869 affects qt4-x11
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-19873 affects qt4-x11
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update w-i-p status of freerdp.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Update entry for CVE-2017-13168/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for mosquitto issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update notes for CVE-2018-19295/singularity-container
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-19960
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove mini-httpd entry, not a security issue, robustness issue; will not recieve a CVE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add references for mosquitto issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20145/mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Partially revert 6b4aedae4084 ("Triage results.")
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Add missing note attributions.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Partially revert b3a4d47346b2 ("Triage results.")
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triaged some for stretch as it was already done for jessie.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Revert "Triaged some for stretch as it was already done for jessie."
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 5 commits: CVE-2017-14058,libav: Jessie is affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim jasper in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16872/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-16872/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add patch for CVE-2018-14423
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] update openjpeg2 dla needed entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for collection of workdpress issues: #916403
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mfsa2018-29 issues for src:firefox fixed in unstable with 64.0-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fix for CVE-2018-19865/qtvirtualkeyboard-opensource-src via experimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19869/qtsvg-opensource-src fixed in experimental via 5.11.3-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] update tiff dla needed entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20123/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] htslib/1.9-2 uploaded to unstable adressing CVE-2018-1384{3,4,5}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1687{3,4,5}/golang* issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] update libsndfile dla needed entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1606-1 for gcc-4.9
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] new webkit issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-20123/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] cups spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-2010{2,3}/haproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1562-3 for poppler
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 2 commits: [ libav LTS triaging] data/CVE/list: libav in jessie is affected by…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 2 commits: libfprint embeds nbis
Paul Wise
- [Git][security-tracker-team/security-tracker][master] Remove src:sqlite3 associationg with CVE-2018-18344
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1687{3,4,5}/golang-1.10 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1687{3,4,5}/golang-1.11 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVEs for 5.0.1 wordpress release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further notes on CVE-2004-2687/distcc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19758/libsndfile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1607-1 for samba
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Maintainer feedback.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] add CVE-2017-1745{6,7} potential duplicates
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000052/fmtlib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20144/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-12982/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-12983/libpodofo: #916580
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-11256/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-11255/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-5783/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-12982/libpodofo: #916581
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-11256/libpodofo: #916583
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-11254/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-11255/libpodofo: #916584
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-11254/libpodofo: #916585
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add additional references for CVE-2018-19760/confuse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Some more notes about wordpress analysis.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Add vlc to dsa-needed list with comment from Mainainer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync versions for webkit2gtk with WSA-2018-0009
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] status update
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Claim llvm-toolchain-7
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Add new terminology issue: #916630
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for various CVEs fixed in linux 4.19.9-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1608-1 for php5
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-16323/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20169/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20167/terminology assinged (bug #916630)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add sqlite3 issue (and fixed in chromium)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: add libphp-phpmailer
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] new couchdb issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16868/gnutls28 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim sleuthkit in dla-needed
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: add notes to sleuthkit entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] wordpress issues fixed in usntable via new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct protocol for commit reference in CVE-2018-16323
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] take openssl, vlc
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-20167/terminology in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20185/graphicsmagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20184/graphicsmagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add bug reference for CVE-2018-20184/graphicsmagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19974, CVE-2018-19975, CVE-2018-19976 for yara
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1609-1 for libapache-mod-jk
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1610-1 for sleuthkit
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS/Update symfony status
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS/update status of nss
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add note
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Correct version for libapache-mod-jk in DLA-1609-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove postponed tags for two issues which will recieve a DSA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20189/graphicsmagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] tiff: CVE-2018-5360 same as CVE-2014-8127
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] new faad2 issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new sass issue, NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-20189/graphicsmagick (#916752)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-20191/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] two qemu issues n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Demote severity for CVE-2018-20123/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20191/qemu as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20124/qemu as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] imagemagick update
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add graphicsmagick to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16882/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add graphicsmagick to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16884/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16883/sssd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-16883/sssd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim graphicsmagick
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: asked mitre for update of libsndfile & tiff cves
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] new qemu issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Clarify note re RDMA and PVRDMA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 3 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Try to take care of libapache-mod-jk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20024/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20023/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20022/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20021/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20020/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20019/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-15126/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-15127/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2018-11799 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Magellan issue for sqlite: Add more information
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add sqlite3 to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] openssl1.0 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20230/pspp
Henri Salo
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1611-1 for libav
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add libvncserver to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] claim libvncserver
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove todo for CVE-2018-20230/pspp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add 3.25.3-1 as fixed version for sqlite3 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-5742/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update status notes of ongoing work for freerdp (v1.1).
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] new k8s issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add additional reference for sqlite issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20230,pspp: Jessie is no-dsa.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] [libav LTS triaging] data/dla-needed.txt. Add note about false upstream commit…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Triage yara for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 3 commits: Reference both upstream commits for CVE-2018-1997{4,5,6}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add netatalk to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] yara: Reference Debian bug 916932
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20167,terminology: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for netatalk update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference Debian bug 916941 for libvncserver.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16883,sssd: Update notes.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add sssd to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-16883/sssd as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000880/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000879/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-1000880/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-1000879: use common syntax
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-1000879/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000877/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-1000878/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000876/binutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-1000877/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000816/grafana
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000852/freerdp*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim libarchive in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libapache-mod-jk update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/DLA/list: Manually fix DLA-1611-1. Not resolved: CVE-2015-6823 and…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add fixed version for graphicsmagick issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track soundtouch issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update status of ongoing freerdp patch backporting work.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add stretch-pu pre-approval bug for freerdp 1.1.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-6307/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1279/rabbitmq-server
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000886/nasm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1000886/nasm as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new gitlab issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new issues in python-pykmip and hoteldruid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] yara fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add libarchive to dsa-needed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] autopsy n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-20229/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new freecol issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two unimportant qemu issues fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] another unimportant qemu issue fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two qemu issues fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] backdrop ITPed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new zoneminder issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for four libarchive issues via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-1000872/python-pykmip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-100083{2,3}/zoneminder: #917024
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference (pull request) for CVE-2018-100083{2,3}/zoneminder
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim sqlite3
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-20346/{sqlite3,chromium} for "Magellan" issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for upstream commit of CVE-2018-6616/openjpeg2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000879,CVE-2018-1000880,libarchive: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1612-1 for libarchive
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] new avahi issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-1000845/avahi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000825,freecol: end-of-life since games are not supported in LTS.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1613-1 for sqlite3
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: re-add sqlite3 (for <no-dsa> issues).
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] LTS/claim uw-imap
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: Align severity of CVE-2018-1000845 with CVE-2017-6519
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20322/limesurvey, itp'ed, #472802
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2018-6954/systemd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] sqlite no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20337/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20337/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on libarchive in dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-581{7,8,9}/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2018-581{7,8,9}/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-17247/elasticsearch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-2010{2,3}/haproxy as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-16879 as NFU (Ansible Tower)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-18245/nagios
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16885/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-16203 as NFU (postgresql-pgpoolAdmin)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-11987 potentially affecting src:linux upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1614-1 for openjpeg2
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Readd openjpeg2 to dla-needed.txt again because there is still one unresolved
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1279,rabbitmq-server: Mark as no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000871,hoteldruid: Reference Debian bug.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add libraw to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-18245,nagios{3,4}: Filed upstream bug report and requested more
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1160/netatalk via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20365/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20364/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20363/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new faad2 issues in upstream version 2.8.8
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add Debian bug reference for CVE-2018-20365/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take ghostscript for regression fix
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS/uw-imap status update
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add upstream commit for CVE-2018-18245/nagios4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-18245/nagios4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000858/gnupg issue with WKD
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: add comment to openjpeg2 entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: update libsndfile entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ghostscript regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2018-13458, CVE-2018-13457 and CVE-2018-13441
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for three nagios4 issues: #917160
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark hhvm as removed package (from all supported suites)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000858,gnupg2: Jessie is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-17197/tika
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim nagios3 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2016-6209,nagios3: Link to upstream bug and fixing commit.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2014-1878,nagios3: Link to fixing commit.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19985/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20349/{igraph,r-cran-igraph}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20349 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20431/libextractor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20430/libextractor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2018-20349
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] r-cran-igraph embeds src:igraph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2018-20431/libextractor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new ming issues (CVE-2018-2042{5,6,7,8,9})
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20349 as no-dsa for r-cran-igraph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsndfile: add fix for alaw and ulaw issues
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: update libsndfile entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20349,igraph: Mark as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add notes for CVE-2018-2036{3,4,5}/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add fix for CVE-2018-13139
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa tags for upcoming nagios3 update.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1616-1 for libextractor
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20349/ipgraph fixed via unstable upload with 0.7.1-3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20433/c3p0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20433/c3p0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-581{7,8,9}/libraw as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20406/python*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20406/python3.5 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add python3.4 to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1617-1 for libvncserver
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20433,c3p0: Fixed in unstable
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-15126 as not-affected for jessie
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim libraw
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 7 commits: Add CVE-2018-20461/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-20458/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-2045{7,9}/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2015-7686 and CVE-2018-12558 upstream mitigation
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] reserve DLA-1618-1 for libsndfile
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries which got an update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20481/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20481/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20467/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: dla-needed: update libsndfile entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20467/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-18928/icu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1000858/gnupg2 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-3740/ruby-sanitize in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixing version information for CVE-2018-3740/ruby-sanitize
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Add CVE-2018-20483/wget
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20483/wget
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20482/tar
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20482/tar
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] qtbase-opensource-src/5.11.3 moved to unstable fixing three CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-19871/qtimageformats-opensource-src
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] qtsvg-opensource-src fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] qtvirtualkeyboard-opensource-src fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-16887 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20217/krb5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20217/krb5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20184: add link to trimmed down patch
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ruby-sanitize update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1619-1 for graphicsmagick
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2018-1935{1,2}: #917408, #917409
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add link to upstream bug tracker for CVE-2018-19758
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1620-1 for ghostscript
Lucas Kanashiro
- [Git][security-tracker-team/security-tracker][master] krb5 no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] wireshark DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-19758/libsndfile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20511/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libarchive DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1591-2 for libphp-phpmailer
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: update note
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 7 commits: CVE-2018-20461,radare2: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] claim phpmyadmin in data/dla-needed.txt
Lucas Kanashiro
- [Git][security-tracker-team/security-tracker][master] Sort jessie tagged entries into source package group for consistent style
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-2043{0,1}/libextractor fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20483/wget fixed in unstable with new upstream version upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000871,hoteldruid: Mark as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20433/c3p0 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for four libraw CVEs in unstable via new upstream verison
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20217,krb5: No-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add imagemagick to dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] ocsinventory-server fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20481,poppler: Mark as postponed for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update status for gm
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20482,tar: Link to fixing commit
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] graphicsmagick: Add note on partial fix only according to maintainer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add libextractor to dsa-needed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add todo item for CVE-2018-20185
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-20482/tar: reference upstream bug report
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20551/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20551/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-2054{1,2}/libxsmm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add several new libcaca issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1621-1 for c3p0
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add tar to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20551,poppler: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 7 commits: change status of CVE-2017-13764
Thorsten Alteholz
- Processing e05408ef0cb9eaa27ed90bc8b7672b149003d9a2 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] fix typo
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20543/libxsmm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-2054{1,2}/libxsmm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20543/libxsmm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20570/jasper
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-2055{2,3}/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-2055{2,3}/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libextractor DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Adding myself to LTS frontdesk.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20184: Expand reference to trimmed down patch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2018-20433 via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reported libcaca issues to upstream
Henri Salo
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further commit reference for CVE-2018-15126
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-19799/dolibarr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim tar.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] dla: claim thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] glibc spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add libssh for regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20544/libcaca
Henri Salo
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20545, CVE-2018-20548/libcaca
Henri Salo
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reference fix for CVE-2018-16468/ruby-loofah
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Bump version for CVE-2018-1000544 for including complete fixes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20584/jasper
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove duplicated entry/reference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-2054{5,8}/libcaca as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-19985 in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track upstream fix for CVE-2018-2054{6,7}/libcaca
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further commit for CVE-2018-20545, CVE-2018-20548 and CVE-2018-20549
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add libcaca to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20552,CVE-2018-20553,tcpreplay: no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libcaca issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1622-1 for debian-security-support
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-17191/netbeans
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS/update status of uw-imap
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: status update
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20591/ming
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] wine issues fixed with upload of 4.0
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] unclaim policykit-1 in dla-needed.txt
Santiago R.R.
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1623-1 for tar
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20623/binutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20622/jasper
Salvatore Bonaccorso
Last message date:
Mon Dec 31 20:17:42 GMT 2018
Archived on: Mon Dec 31 20:17:45 GMT 2018
This archive was generated by
Pipermail 0.09 (Mailman edition).