July 2018 Archives by thread
Starting: Sun Jul 1 00:04:11 BST 2018
Ending: Tue Jul 31 23:34:25 BST 2018
Messages: 984
- [Git][security-tracker-team/security-tracker][master] Annotate additional commit required for graphicsmagick/CVE-2017-11403
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2017-11722 as not affecting graphicsmagick in jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1410-1 for python-pysaml2
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1400-2 for tomcat7
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Remove ming and lame entries from dla-needed
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add jetty entry to dla-needed and claim it
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] libquazip fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: test package for slurm-llnl
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-{8905,10963}/tiff fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Assign the new CVE-2018-13043 to the devscripts issue.
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] mark CVE-2016-8614 and CVE-2016-8628 as not-affected
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Use tabs instead of spaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-12232/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-12714/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Sync URL with one uses within kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove ntfs bugs references
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes for CVE-2018-10849
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes for CVE-2018-10848
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker] Deleted branch update_python
Brian May
- [Git][security-tracker-team/security-tracker][master] Remove bug annotation for CVE-2018-12538
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-0499
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove postponed tag from tiff issues.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] new binutils issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2018-1085{7,9}/git-annex
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10852
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new accountsservice issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update jetty entry in dla-needed
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: imagemagick fixed in experimental
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two rejected entries
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new node-pg issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Adjust firefox references
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-12895
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream bug reference for CVE-2017-18342
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2017-18342
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2018-1000532/beep
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add jetty8 source package for two recently assigned CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-0618/mailman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update upstream references for libarchive-zip-perl issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10860/libarchive-zip-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Replace aliased id with bug id directly
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust suite names for CVE-2018-1293{2,3}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two CVEs already fixed in wine-development since 3.8-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Use direct bug id
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Use unaliased reference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add downstream bug reference for CVE-2017-18225
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13054/cinnamon assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add tiff to dla-needed.txt again.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] remove ansible note in dla-neeeded.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: Unify note stile for PHP bug reference for the further update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVEs for linux fixed with 4.17.3-1 as fixed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13049/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust comment for CVE-2018-8614
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13100/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13099/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13089/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13097/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13096/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13095/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13094/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13093/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-13043/devscripts as not affecting jessie+stretch
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13066/ming
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2108-13053/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-12896/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim gosa in dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add packages embedding libsimpleini
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Three CVEs for jetty9 adressed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: add and take gosa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libjpeg-turbo no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new android issues, one issue in linux
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1412-1 for cups
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reference full commit id
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-1152/libjpeg-turbo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Android NFUs, two linux issues reported via Android
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Two of the jetty9 issues are actually not fixed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update version information for CVE-2017-1000
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13112/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some new NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13112/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: gosa, exiv DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take PHP
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Separate bug for CVE-2017-7658
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] asterisk bug
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Two CVEs for jetty9 fixed with 9.2.25-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove CVE-2018-1108 entry (as was needed to be reverted)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add one more CVE for stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10886/ant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10885, NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] One older gitlab issue got a CVE (but not all of the gitlab-10-dot-3-dot-4-released advisory)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-0919/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2018-8038 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Convert removed entry for squid, which was introduced with version 4
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add new CVEs for thunderbird
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8026/lucene-solr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for php-horde-image
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add lisoup2.4 to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct gosa version in DSA-4239-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-12021/singularity-container
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2018-13139 with libsndfile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track another round of update for stretch-pu for linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-18255 as pending for stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track thunderbird fixes from mfsa2018-18
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove kf5-messagelib from dla-needed as no open CVEs for stretch
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13153/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove liblouis from dla-needed as no open CVEs for Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] Remove ipsec-tools from dla-needed.txt as no CVEs require fixing in Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] Removed kmail from dla-needed.txt as no CVEs need fixing for Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] new vlc issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] update vlc entry, marks stretch correctly as fixed (uses -0 version) and
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add note for dokuwiki in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] claim dokuwiki back after agreement from the ML
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Convert CVE-2018-11516 entry to use Debian version numbers
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1413-1 for dokuwiki
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] claim back mercurial
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] mark CVE-2017-9815 as fixed in jessie because it is the same fix as CVE-2017-9403
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] intel-microcode fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] more than meets the eye in mercurial
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] 2 commits: Wrap one linger note for readability
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Add dates for jetty.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] org/lts-frontdesk.2018.txt: Take another week.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1414-1 for mercurial
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] 2 commits: take thunderbird
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] PHP DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa entry for CVE which got update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new ffmpeg issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libsoup DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-3769/ruby-grape
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] tcpreplay no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-3769/ruby-grape
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] nextcloud issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark fixed jessie versions for mercurial issues without CVE
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark xapian-core as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1334{6,7,8}/mercurial
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand one note to clarify issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10892/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim libsoup2.4
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] "new" bitcoin issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new ntopng issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] org/lts-frontdesk.2018.txt: Claim 06-08 to 12-08 per mailing-list request.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] org/lts-frontdesk.2018.txt: Claim 16-07 to 22-07 per mailing-list request.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1415-1 for phpmyadmin
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add package name
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] 2 commits: Ignore also for jessie as it is ignored for strech and wheezy.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Don't clutter tracker with ELTS entries
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1416-1 for libsoup2.4
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] 5 commits: lib: add "headers" attribute on Result objects
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2018-13410/zip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Set Content-Length for BinaryResult
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream issue and fix commit URLs for piwigo CVE-2018-7722 and CVE-2018-7724
Henri Salo
- [Git][security-tracker-team/security-tracker] Pushed new branch 3-security-tracker-should-support-head-method
Julien Cristau
- [Git][security-tracker-team/security-tracker][master] CVE-2018-5692/piwigo
Henri Salo
- [Git][security-tracker-team/security-tracker] Deleted branch 3-security-tracker-should-support-head-method
Julien Cristau
- [Git][security-tracker-team/security-tracker][master] 2 commits: Also set Content-Length for HTMLResult
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2017-17827/piwigo
Henri Salo
- [Git][security-tracker-team/security-tracker][master] 2 commits: lib: add support for the HEAD HTTP method
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Fix check for whether /tracker/data/json needs to be recomputed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10893/spice-gtk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-12938 is REJECTED as duplicate of CVE-2017-17833
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for ntopng issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1417-1 for ca-certificates
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2016-1000338,bouncycastle: Will be fixed via DLA
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1418-1 for bouncycastle
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2018-8014
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-12581 and CVE-2018-10188 as not-affecting for jessie
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add note for thunderbird update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-13410/zip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13410
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-12895/wordpress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2018-12895/wordpress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commits referencing CVE-2018-0618
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13054/cinnamon: #903201
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status ofr CVE-2018-13139/libsndfile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-5873/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two glibc CVEs fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Tentatively restart taking care of two items for DSA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] fix fast-cpp-csv-parser entry
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new google-perftools issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new libsndfile issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reference tentative fix for CVE-2018-13421
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13421/fast-cpp-csv-parser
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13420/google-perftools
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop powerpc from sid architectures
Raphaël Hertzog
- [Git][security-tracker-team/security-tracker][master] Add new dolibarr issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13421/fast-cpp-csv-parser fixed in unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] imagemagick fixing several CVEs uploaded to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13440/audiofile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-3760/ruby-sprockets fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add advisory
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] update libpodofo's CVEs
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-12982/libpodofo and CVE-2018-12983/libpodofo as no-dsa also for jessie
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] Four php7.1 issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add wordpress to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove TODO from rejected CVE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13785/libpng1.6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-16890/swftools
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13785/libpng1.6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVe-2018-13785/libpng1.6 as not-affected for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some IBM specific CVEs as NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim wordpress in dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ruby-sprockets update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-9415
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1129/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1128/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-10894 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1088{7,8}/libgit2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10861/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000622/rustc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim sssd
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000613/bouncycastle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new node-macaddress issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-8945/binutils fixed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13785/libpng1.6 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13797/node-macaddress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2015-3230 as not-affected for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim libspring-java
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2016-5405 as no-dsa for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2017-2668 as not-affected for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Update bug and commit references for CVE-2018-10850
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim mailman in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-3760,ruby-sprockets. Jessie is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13440,audiofile: Minor issue
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000532,beep: Minor issue, follow Stretch
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13440/audiofile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10850/389-ds-base
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commits for all affected branches for ruby-sprockets
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10888
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10887
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-10872 as not-affected for src:linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add cinnamon to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13421,fast-cpp-csv-parser: no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13818/twig
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-5873
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVEs fixed by ffmpeg 3.4.3 as fixed
Sebastian Ramacher
- [Git][security-tracker-team/security-tracker][master] htslib no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add git-annex to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13419,libsndfile: no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1152,libjpeg-turbo: no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-12520,ntopng as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2017-15238 as not affecting graphicsmagick in jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Process CVE-2018-1337 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process CVE-2018-1331 (NFU)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Four CVE affecting php7.0 fixed in unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add three new moodle CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new policykit-1 issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-3693/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two Adobe NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: NFU
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13863/node-bson, itp'ed, #897282
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new curl issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove incorrect n/a for sprockets in jessie
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-0500
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add ruby-sprockets to dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add wine to dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add bouncycastle to dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark htslib issues as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8007/couchdb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixed version for CVE-2018-1116/policykit-1 and reference bug
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] modify status of CVE-2016-5405 and CVE-2017-15135 for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-12933,tcpreplay as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] DSA-4243-1
Luciano Bello
- [Git][security-tracker-team/security-tracker][master] Add source package name for DSA-4243-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new cups CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Four of the cups issues were adressed in 2.2.8-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new qutebrowser issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] tomcrypt fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ffmpeg fixed in experimental
Sebastian Ramacher
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2018-10895
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further references for libtomcrypt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix version for cups in unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-6553/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2018-10895/qutebrowser
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Upload for wordpress was acked
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for unstable for CVE-2018-1087{4,5}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1340{5,6}/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-5739/isc-kea
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10898/tripleo-heat-templates
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10897/yum-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand todo for CVE-2018-8356
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: data/dla-needed.txt: Correct ordering
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: New bug for wine-development variant of #816034
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1419-1 for ruby-sprockets
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] ffmpeg triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Mark hdf5 issues undetermined
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11379
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11380
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11382 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11384 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-12320 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-12321 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-12322 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-8808 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-8809 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-8810 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add fixed version for CVE-2018-10187 fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11376 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11377 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-11378 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add a (yet) unspecified new mailman CVE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13796/mailman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on proposed update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-7550/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000517/busybox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand note for CVE-2018-1000500/busybox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1000517 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker] Pushed new branch update_python_exceptions
Brian May
- [Git][security-tracker-team/security-tracker] Deleted branch update_python_exceptions
Brian May
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13405: fix url
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1420-1 for cinnamon
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] accountsservice: add upstream bug and fix
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] dla: take cups
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] mp4v2 double free
Henri Salo
- [Git][security-tracker-team/security-tracker][master] wolfssl fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] cups fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14036/accountsservice assigned
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2016-1626 was resolved by the same patch as CVE-2016-1628 but forgotten in this DSA
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] dokuwiki fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2016-5158 was resolved by the same patch as CVE-2016-5159 but forgotten in this DSA
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add oss-security reference
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new radare2 issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new catimg issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new nagios4 issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Additional nagios4 issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] catimg bug
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1421-1 for ruby2.1
Santiago R.R.
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa/postponed tagged entries for ruby2.1 which got update in DLA-1421-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note references for CVE-2018-1403{1..5}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14016/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14017/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14015/radare2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove CVE-2018-418{2,3} for list of fixed CVEs in DSA-4243-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ruby-grape, bouncycastle no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] remove one CVE, still unfixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14054/mp4v2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2018-5739/isc-kea
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1116/policykit-1 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000211/ruby-doorkeeper
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new bootstrap issues, specific affected versions need to be verified
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new soundtouch issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reserve DLA-1422-1 for linux
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Mark Linux kernel issues as unfixed/ignored in linux-4.9
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1423-1 for linux-4.9
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Remove one issue from DLA-1422-1
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Fix CVE list for DLA-1423-1
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1424-1 for linux-latest-4.9
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Regroup some entries by source package
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reshuffle list to separate from likely candidates and uploads which did not…
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-12540 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track 4.9.107-1 fixes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for 4.9.110-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove src:undertow entries for stretch (will be removed in 9.5)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Merge fixes included in Stretch 9.5 point release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1425-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Three more CVEs fixed due to new upstream upload for nvidia-graphics-drivers
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE fixes for two minor issues for postgrsql-9.6 now included in 9.5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1426-1 for cups
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14047/pngwriter
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14046/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference proposed fix for CVE-2018-14046/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14046/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update python exception syntax for Python 3.6 compatibility
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa from busybox issues. They will be fixed in a future DLA.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add policykit-1 to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] radare2: Mark open issues as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add wine-development to dla-needed.txt. See remarks for wine.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2017-14528/imagemagick not yet fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-0499,xapian-core: not-affected, vulnerable code not present.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add jetty8 to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add two new znc issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for znc issue: #903787
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add ant to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add bug reference for znc path traversal issue: #903788
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add znc to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2006-2191
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark open ceph issues as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-14528/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add znc to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-7688
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for src:xen in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-7689
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record entry for DLA-1422-2 linux - regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14055/znc assigned for #903787
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14056/znc assigned for #903788
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-8976
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim znc.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] claim ant in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1427-1 for znc
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14036/accountsservice
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status of mailman in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add libgit2 to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim libarchive-zip-perl in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add gpac to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-11439,taglib: Reference pull request
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add taglib to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add sympa to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add blender to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DSA for mailman update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add upstream issue and commit reference for CVE-2018-11439
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-11439 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1428-1 for 389-ds-base
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 389 triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new libsixel issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mp4v2, gpac no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dsa-needed: add ant, blender, mailman
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mp4v2, libsixel bugs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take ffmpeg
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] "new" node-ws issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] "new" node-qs issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove ignored tag for CVE-2016-5405
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2018-1407{2,3}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2016-10522
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1429-1 for sssd
Brian May
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-13033
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2016-5836,wordpress: remove no-dsa, will be fixed via DLA.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: readd 389-ds-base
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: Claim bouncycastle and sympa in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1432{5,6}/mp4v2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-036{0,1}/clamav fixed in 0.100.1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop note for CVE-2018-7775
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove note for CVE-2018-6620
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Updates on Microsoft specif CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ruby-rack-protection DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take blender
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update Jetty dla-needed entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1000089/django-anymail as ignored for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stable triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim gpac
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14337/mruby
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14329/htslib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-12584/resiprocate
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit references for CVE-2018-14337/mruby
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix copy paste typo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim libgit2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add clamav to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-14073 and CVE-2018-14072 as <postponed> (both: libsixel). Minor issues.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2017-17689 as <postponed> for [jessie]. Wait for upstream…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add libtomcrypt to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add phpldapadmin to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-1000520 as <no-dsa> for polarssl in [jessie]. Minor issue.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add ruby2.1 to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add resiprocate to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add giflib to dla-needed.txt (with comment).
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add yum-utils to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] libpgobject-util-dbadmin-perl no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-14329 as <no-dsa> for htslib in [jessie]. Upstream…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add twig to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add vim-syntastic to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Ignore CVE-2018-3740 (ruby-sanitize) for jessie. Issue only…
Mike Gabriel
- Processing ebc66f79026e623c894cbce02ac99725e3b66733 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/CVE/list: Add commit that fixes CVE-2018-1000544 (ruby-zip).
Mike Gabriel
- Processing 9401f1235a2261c82f9d0684e2ce1969042b2af3 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add twitter-bootstrap and twitter-bootstrap3 to dla-needed.txt.
Mike Gabriel
- Processing e62bd1e928dca706e4a2d2b0cd317865a6282306 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Remove superflous dot in CVE/list.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Wrap paragraph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand references for CVE-2018-1000211
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-100211/ruby-doorkeeper
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove reference to commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14337
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14363/neomutt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14362/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14361/neomutt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14360/neomutt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14359/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14358/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14357/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop unneeded reference (no substantial information)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14356/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14355/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14354/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2018-1000613,bouncycastle: Jessie is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update status of sympa in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14353/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14352/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14351/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14350/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14349/{neomutt,mutt}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add mutt to dsa-needed list (but not urgent for DSA)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ffmpeg, blender DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14345/sddm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1434{7,6}/libextractor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim blender in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000613,bouncycastle: Stretch is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] libgit2 0.27.0 based uploaded to unstable with 0.6 revision
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new Java issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] yum-utils ignored
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new virtualbox issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4250-1 for wordpress (CVE-2018-12895)
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add first set of mysql CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add more mysql CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1333/apache2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8011/apache2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14379/mp4v2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14378/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14375/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14374/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14373/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-14345/sddm as not-affected for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1405{5,6}/znc fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim policykit-1 in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] claim twig in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] ffmpeg fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] fix vlc version, 3.0.3 was retagged
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for neomutt issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-9815,tiff,tiff3: Mark it as fixed in Wheezy
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: new gitlab issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: follow Wheezy and Stretch with CVE-2016-1517 for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add bug reference for gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8042, NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add vim-syntastic to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] virtualbox/5.2.16-dfsg-1 uploaded to unstable adressing several CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track four CVE fixes for openjdk-10
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1430-1 for taglib
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14338/exiv2, mark as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] vlc DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for mutt issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] znc DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take openjdk-8
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: NFU (confirmed by maintainer)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mp4v2 no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Mutt issues fixed in unstable via 1.10.1-1 upload (#904051)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] neomutt issues fixed in unstable via 20180716+dfsg.1-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1431-1 for ant
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Update mutt CVEs for neomutt patchset
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more Oracle NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10903/python-cryptography
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-10903/python-cryptography as not affecting stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1432-1 for gpac
Brian May
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add bug reference for CVE-2018-10903/python-cryptography
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14403/mp4v2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1439{4,5}/ffmpeg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new set of wireshark issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: take mysql-5.5 and openjdk-7
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Initial wireshark triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add wireshark
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-10903 (python-cryptography) as not affecting jessie.…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add mutt to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add sam2p to dla-needed.txt.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag open CVEs for mp4v2 in jessie as <no-dsa>. Following the…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-11529 (vlc) with <end-of-life> for [jessie].
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Removing yum-utils from dla-needed.txt again, marking CVE-2018-10897 as <ignored> for jessie.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Remove libtomcrypt from dla-needed.txt. Mark CVE-2018-0739 as <no-das> for…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] two wireshark issues n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8018 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Whitespace cleanups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-8011/apache2 as not-affected for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-8011/apache2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-1002153/koji
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-1333/apache2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1333/apache2 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2018-1333/apache2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2018-14404/libxml2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-14404/libxml2 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1433-1 for openjpeg2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] readd openjpeg2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14332/clementine
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] clementine non-issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim intel-microcode in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] symfony triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-2598
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1434-1 for linux-base
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-11489/giflib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-11490/giflib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record bug for mysql-5.7 issues: #904121
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-0108{69,70} as NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] DLA.template: fix syntax for singular entries
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] dla: add note for clamav
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] dla: add dnsmasq for important bug fix
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1124-2 for dnsmasq
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-12581 as not-affected for all versions
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Revert "Mark CVE-2018-12581 as not-affected for all versions"
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10900/network-manager-vpnc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14438/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14437/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14436/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14435/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14434/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-14102/mimedefang via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim phpldapadmin.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-8011 for apache2 in [jessie] as <not-affected>.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 3 commits: Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14460/hdf5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14448/untrunc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add network-manger-vpnc and claim it.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Slightly expand note for CVE-2017-16652
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2016-10727/evolution-data-server
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14446/mp4v2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-14445 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14443/libredwg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add libxml2 to dla-needed.txt (with comment).
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Mark mysql-5.5 as <not-affected> by CVE-2017-15365. Code passage not present.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14447/confuse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-2599 for mysql-workbench in [jessie] as <postponed>.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1436-1 for gosa
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14447/confuse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-10893
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10893
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reference patch review thread
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Replace <> with != for Python 3.6 compatibility
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take ant from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-10905 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add entry for incomplete fix for ant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for ant issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for ant issue, #904191
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2018-12601 & CVE-2018-12578 (sam2p).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Claim mutt in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1437-1 for slurm-llnl
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add new civicrm issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-5764/rsync
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for civicrm issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Document more symfony issues
David Prévot
- [Git][security-tracker-team/security-tracker][master] Adjust markers for temporary descriptions
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record fixed version for 5 CVEs for symfony via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000119/ruby-rack-protection in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record fixes for ffmpeg via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1438-1 for opencv
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim vim-syntastic and resiprocate
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14072/libsixel
Henri Salo
- [Git][security-tracker-team/security-tracker][master] 5 commits: Add and take network-manager-vpnc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1999023 to be checked
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark busybox TEMP issue as fixed in Wheezy.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-1999023
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove TODO item for CVE-2018-1999023, clarified
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14505
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim openssl in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-14337 (mruby) for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: Correct distribution name from previous commit.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-10893 (spice-gtk) for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-10893 (spice-gtk) for wheezy too.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Revert "Triage CVE-2018-10893 (spice-gtk) for wheezy too." which needs to be…
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-16667/backintime
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-12227/asterisk via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10910/bluez
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsixel issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2017-6335 as not affecting graphicsmagick in jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Sort entries top-down
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1999024/mathjax
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new ffmpeg issues (need further check)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14551/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-14524/libredwg, itp'ed, #595191
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark aubio issues as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for network-manager-vpnc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-14521, CVE-2018-14522 & CVE-2018-14523 for jessie and wheezy.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Remove annotation of CVE-2017-6335 as not affecting graphicsmagick in jessie;…
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Remove wheezy-triage parts of 7c11057c88b22c777ac7e185ec1884ba5aa1c62b (should…
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-11757 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-11756 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track pydio issues (associate for now tih ajaxplorer itp)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2018-1999022 with civicrm issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2017-16545 as fixed by graphicsmagick 1.3.20-3+deb8u3 in jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8037/tomcat*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-8037/tomcat8
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8034/tomcat*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-13988/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1336/tomcat*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10912 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2018-13796/mailman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10906/fuse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10906/fuse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10906/fuse fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1999023/wesnoth-1.14 via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-10900/network-manager-vpnc fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove todo entry for CVE-2018-8037
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ant update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1439-1 for resiprocate
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa entry with update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-13796 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14568/suricata
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1440-1 for libarchive-zip-perl
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1441-1 for sympa
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1442-1 for mailman
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2016-10728/suricata
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18343/symfony
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Correct ordering.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 3 commits: data/dla-needed.txt: Triage evolution-data-server
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim evolution-data-server.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage suricata
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Remove mailman from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add sympa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1443-1 for evolution-data-server
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-10901/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14371/mojarra
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000135/network-manager fixed in unstable in meanwhile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2012-1096
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] wireshark in jessie not affected by CVE-2018-14343
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add new chromium CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14432/keystone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2017-14503
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14432/keystone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for ant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add specific note for CVE-2018-10886
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-1450{2,3}/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2017-0630 with src:linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-14432/keystone as EOL in jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage ant
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14048
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-6160
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim ant:incomplete fix for CVE-2018-10886
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-7032/myrepos
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Correct libspring-java entry.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add two new kafka issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-10841/glusterfs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] fix number of not-affected CVE, OBOE
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 3 commits: Jessie is not affected by CVE-2018-14367
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add further fixes needed for CVE-2018-13796
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2015-9261/busybox assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Cleanup busybox entry for next point update with CVE-2015-9261 assignment
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1444-1 for vim-syntastic
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim giflib
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add mailman.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2018-14048 (libpng1.6) in jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1445-1 for busybox
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Sort source package entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18344/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1446-1 for intel-microcode
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Try to speed-up ci by setting GIT_DEPTH
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] indent setting
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1442-2 for mailman
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14551
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-10779
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new gitlab issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further note on upstream regression fix for CVE-2018-13796
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2017-14108
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14550/libpng
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Split Debian bugs as requested by maintainer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct entry for CVE-2018-12904
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 9 commits: Add CVE-2018-14617/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2018-12558
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage libspring-security-2.0-java
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1447-1 for libidn
Santiago R.R.
- [Git][security-tracker-team/security-tracker][master] Several wireshark CVEs fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14370 fixed upstream in 2.6.2 (included in unstables 2.6.2-1)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: follow security team with CVE-2018-11489 and CVE-2018-11490
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1414-2 for mercurial
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1448-1 for policykit-1
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1449-1 for openssl
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-0732,CVE-2018-0737,openssl will be fixed via DLA.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] LTS/tomcat8 update package status
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Two issues for apache2 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-10903/python-cryptography fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new libmspack issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug references for libmspack issues: #904799, #904800, #904801 and #904802
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-049{7,8}/mbedtls: #904821
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record fixed version for CVE-2018-1121{2,3,4} via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove two ruby2.3 postponed tags which are included in next update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for keystone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add ffmpeg to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for fuse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-049{7,8}/mbedtls fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1002208
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] take ruby, symfony
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] also take ffmpeg
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14678/linux assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVEs assigned for libmspack issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream bug reference for CVE-2018-14432/keystone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14423/openjpeg2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2018-7835/h2o
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14423
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2016-4864/h2o
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2016-4817/h2o
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2016-1133/h2o
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2015-5638/h2o
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage fuse
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream commit for CVE-2016-2037/cpio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track 1.9-1 upload to experimental for hstlib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14446
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14403
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14379
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000622/rustc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add bug reference for CVE-2018-14326
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-14345/sddm fixed via upload to unstable for 0.18.0-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14346/libextractor: #904903
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14347/libextractor: #904905
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14523/aubio: #904906
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14522/aubio: #904907
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-14521/aubio: #904908
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1450-1 for tomcat8
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1451-1 for wireshark
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim fuse
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Information public for CVE-2018-13988/poppler, update information
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference reported upstream issue for CVE-2018-1404{4,5}/soundtouch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-13988/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for libmspack issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14734/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference individual commits from the pull request for twitter-bootstrap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ffmpeg DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two ffmpeg issues n/a in stretch
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] More ffmpeg triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1452-1 for wordpress
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim tomcat7 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1453-1 for tomcat7
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Another ffmpeg issue fixed in stretch
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim wine in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] ffmpeg fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add libmspack to dsa-needed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add slurm-llnl for possible regression last DSA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove slurm-llnl entry, not a problem in stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2017-12142/libytnef
Henri Salo
- [Git][security-tracker-team/security-tracker][master] CVE-2017-12144/libytnef
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2018-14567 and CVE-2018-9251
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record CVE fixes for imagemagick issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add squirrelmail issue(s), #905023
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process new NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add busybox due to potential regression.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Two additional Broadcom firmware CVEs, listed in recent firmware-nonfree upload
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-5816/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Better description for CVE-2018-5816
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix description
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-5815/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-5813/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-14678/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Record fixed version for CVE-2017-9417
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14767/kamailio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two ffmpeg issues n/a for stretch
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] one ffmpeg issue fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libraw no-dsa / n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1454-1 for network-manager-vpnc
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add kamailio to dsa-needed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add mruby for stretch-pu (more CVE should ideally be fixed)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim libxml
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add fixed version for two dcraw CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Unclaim phpldapadmin while on VAC (if still there after my…
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2018-12882
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Several CVEs for php7.2 fixed with unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-80{19,20}/tomcat-native
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim clamav in dla-needed.txt
Santiago R.R.
Last message date:
Tue Jul 31 23:34:25 BST 2018
Archived on: Tue Jul 31 23:34:28 BST 2018
This archive was generated by
Pipermail 0.09 (Mailman edition).