February 2019 Archives by date
Starting: Fri Feb 1 00:24:38 GMT 2019
Ending: Thu Feb 28 22:39:20 GMT 2019
Messages: 748
- [Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2019-5010/python2.7
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-14647/python2.7
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove tracking for src:agg for CVE-2019-6247
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for new gitlab issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2019-5010/python3.{6,7}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1655-1 for mariadb-10.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2019-5010/python2.7 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1656-1 for agg.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-7282,CVE-2019-7283,netkit-rsh: no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1340,guacamole-client: Link to possible upstream fix.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add openjdk-7 to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim libthrift-java in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-6446,python-numpy: Clarify upstream view
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Adjust source package name for DLA-1656-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1340: Add reference to respective JIRA issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add python-gnupg to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-11760 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2014-8145/sox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] golang DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update CVE-2017-11089/linux entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2014-8145/sox as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for sox via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] reserve DLA-1657-1 for enigmail EOL
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Add CVE-2016-10741/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18361/python-colander
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for mumble issue (#920476)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add mysql-connector-python to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7308/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1658-1 for phpmyadmin
Lucas Kanashiro
- [Git][security-tracker-team/security-tracker][master] python-colander no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry which got an update in DLA-1658-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-6245
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mp4v removed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1659-1 for drupal7
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] chromium in debian is not affected by two issues
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add mysql-connector-python to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update information for CVE-2018-1340
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage Enigmail for Jessie. It is end-of-life now.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16858/libreoffice
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-18361,python-colander: Mark as no-dsa for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add sox to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-109{8,9}/etcd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-6128/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-6446/python-numpy as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add notes for CVE-2019-6446/python-numpy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: update note for libraw
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim mumble
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2018-19210/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add more information on CVE-2018-17000/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add upstream commit for CVe-2019-6128/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] rssh, libreoffice DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-346{3,4}/rssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for gitlab issues via 11.5.10+dfsg-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] chromium fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-346{3,4}/rssh fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add basic descriptions for CVE-2019-346{3,4}/rssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Add rssh to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Readd drupal7 to dla-needed.txt. Still an open issue.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track fixes for four CVEs for tiff via unstable upload (4.0.10-4)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7309/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7310/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-7310/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1000873 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add php-pear and update drupal7 note
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7313/buildbot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-7313/buildbot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libvncserver update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking of CVE-2015-9275 via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7314/liblivemedia
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-7313/buildbot fixed
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7317/libpng1.6
Salvatore Bonaccorso
- Processing 79eca7824e838db57722b19082dd084e623f0e00 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] frr now in the archive
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] semi automatic unclaim of packages with more than 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-14048/libpng1.6 as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-7317/libpng1.6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] liblivemedia fixed in experimental
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20751/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add several new zoneminder issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7324/kanboard
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libgd2 update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim rssh in jessie
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16838/sssd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16492/node-extend
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16491/node-extend
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reclaim Python3.4
Brian May
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim packages for Thorsten
Raphaël Hertzog
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-739{5,6,7,8}/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] fix package name for debian-security-support
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1000021/slixmpp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10000{19,20}/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some IBM specific NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new ffmpeg issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-7317/libpng1.6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new python-aioxmpp, recon-ng issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3814/dovecot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2019-1000007/python-aioxmpp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2018-20752/recon-ng
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-3814/dovecot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for dovecot update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for glibc via unstable for three CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1660-1 for rssh
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] "new" cvsweb issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new catdoc non issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] python3.7 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Think libarchive is worth fixing.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add reference for CVE-2019-7233
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3820/gnome-shell
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3820/gnome-shell
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new curl issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 7 commits: Add CVE-2018-16890/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: data/dla-needed.txt: Drop errant parens.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ledger fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable upload for CVE-2019-3820/gnome-shell
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-10000{19,20}/libarchive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-6778/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1661-1 for mumble
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] new gitlab issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Three CVEs fixed for qemu via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Raise severity of qemu entries after (PV)RDMA support has been enabled
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] LTS: notice and claim netmask
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1662-1 for libthrift-java
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add temporary entry for src:netmask issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1320/libthrift-java via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-18898/libemail-address-list-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for netmask issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1663-1 for python3.4
Brian May
- [Git][security-tracker-team/security-tracker][master] Two libgd2 issues (CVE-2019-697{7,8}) fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixed version for new curl CVEs
Alessandro Ghedini
- [Git][security-tracker-team/security-tracker][master] 3 commits: Remove no-dsa tagged entries which got an update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1664-1 for golang
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] netmask unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] reserve DLA-1665-1 for netmask
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] reserve DLA-1666-1 for freerdp
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: claim php-pear
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3826/prometheus
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3825/gdm3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-18508/nss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Reference for nss issue, fixed in 3.42.1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libapache2-mod-nss removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3826/prometheus
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-18508/nss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new SDL issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim curl.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-7559 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7560/boolector
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Remove trailing whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] graphismagick: remove note, complete fix now applied upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add source package associated with CVE-2019-7548
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new gpac issues (CVE-2018-2076{0,1,2,3})
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1667-1 for dovecot
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] LTS: claim libarchive
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1668-1 for libarchive
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] LTS: claim libreoffice
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Track libemail-address-list-perl for stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track libemail-address-perl update via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-7582/ming
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add my id to my entries
Brian May
- [Git][security-tracker-team/security-tracker][master] Replace merge request URL with merged commits
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-6974/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7221/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7222/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further reference for CVE-2019-5718/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim tiff
Brian May
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7628/pagure, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit references for three linux issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixes for CVE-2019-6109/openssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2019-6111/openssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20340/libu2f-host
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add a note that xen is being worked on by credative
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] 5 commits: Add bug reference for CVE-2018-20340
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-125{46,50,51}/mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/DLA/list: freerdp 1.1.0~git20140921.1.440916e+dfsg1-13~deb8u3 also fixes CVE-2018-8788.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] CVE-2019-6110/openssh: Add note on reasoning of upstream about vulnerability
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference link to official mailinglist archive
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-61{09,11}/openssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-6110 as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libu2f-host fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add four further SDL issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1669-1 for libreoffice
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-1000652/jabref
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7653/rdflib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1000035: Reference patch as used in openSUSE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3827/gvfs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3827/gvfs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add libu2f-host (CVE-2018-20340) to dsa-needed, and take it
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] 5 commits: CVE-2017-18197: sort suite entries
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] allocate DSA for openssh
Yves-Alexis Perez
- [Git][security-tracker-team/security-tracker][master] CVE-2019-3827/gvfs fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] remove openssh from dsa-needed
Yves-Alexis Perez
- [Git][security-tracker-team/security-tracker][master] Track fixes for webkit2gtk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-3825/gdm3 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: take sox
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Triage result.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000035/unzip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-7665/elfutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7663/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-7664/elfutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7662/binaryen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-1000652/jabref
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track gnulib stretch-pu update for CVE-2018-17942
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2019-3826/prometheus
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2017-1000071/php-cas
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2012-6709/elinks in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Triaged libsass a bit, but it's just the tip of the iceberg, should not
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 4 commits: Reference upstream commit for CVE-2018-11696 which was merged
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] An alternative triage script that works if the json sync is not working.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-13167/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage results.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mosquitto DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] unclaim jackson-databind, not sure what to do in this case
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] update status
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add rssh for regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for mosquitto issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process Xerox NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for unzip via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add rssh to dla-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take rssh for regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Libsdl should be fixed. Missed in last commit.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Triage result.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7443/kauth, #921995
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] node-cli removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-7443/kauth
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] giflib/CVE-2018-11490
Henri Salo
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1670-1 for ghostscript
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] dla: add notes
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1671-1 for coturn
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] unclaimed after 2 weeks of inactivity: faad2 and systemd
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] new borgbackup issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: source package not binary package name
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] dla-needed: reclaim faad2, still working on it
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla: take openjdk-7
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] 3 commits: lib/python/debian_support.py: Use repr(..) over backticks; they are removed in Python 3.x
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4389-1 for libu2f-host (CVE-2018-20340)
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add NOTE and TODO for one part of the CVE-2018-10897/yum-utils fix
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-100083{2,3}/zoneminder fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Remove bogus fixed version for CVE-2019-6975
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5736/runc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-10897/yum-utils as unfixed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-5736/runc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-17942/gnulib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage python-django for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-770{0,1,2,3,4}/binaryen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process CVE-2019-7699 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for rssh regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add lxc
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] coordinate rssh
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] lxc unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] triage a few libpodofo CVEs
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] update faad2 entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: Upstream re-released python-django for CVE-2019-6975 after files were missing.
Chris Lamb
- Processing 278aff5ef33ffcf3ddb0847ad77857f5b13512a7 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Correct jessie entry for CVE-2019-6975.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-6975/python-django via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on borgbackup issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for borgbackup issue: #922080
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1673-1 for wordpress
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Sync status of CVE-2017-5967 with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim python-gnupg in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20587/bitcoin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark php5 under CVE-2018-1000888
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: Revert "mark php5 under CVE-2018-1000888"
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for CVEs adressed in linux/4.19.20-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add for now flatpak under CVE-2019-5736
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1674-1 for php5
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt:keep php5 as it is, roberto is working on it
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3821/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7659/gsoap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] python-django not vulnerable to CVE-2019-6975 in jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE fixes via nagios/4.3.4-3 upload to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark qemu issues as unimporant as (PV)RDMA support disabled again
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] RDMA support ist stil enabled, revert partially previous change
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20123/qemu source-code wise again affected
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for various CVEs in unstable for tcpreplay upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Decouple entry for flatpak from CVE-2019-5736, should get an own CVE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] fixing a bunch of opencv CVEs also in unstable
Mattia Rizzolo
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: claim drupal7
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] LTS/Update php5 status
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Adjust version for opencv entered unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2018-18895 was rejected (duplicate of CVE-2014-3004)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-5736/runc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7304/snapd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bug reference for lxc issue: #922169
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adapt URL to DLA advisories in a https://www.debian.org/security/lts/
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for various CVEs for libsndfile via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove duplication comments for CVE-2017-17457 and CVE-2017-17456
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20781/gnome-keyring
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for three CVEs in ceph via ceph/12.2.11+dfsg1-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] flatpak DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] flatpak CVEfied
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-3164/lucene-solr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-7090 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5784/chromium
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-125{46,50,51}/mosquitto fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-18508/nss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2017-3164/lucene-solr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Review entries and regroup according to likely inclusion in point release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new enigmail issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2018-15587 with src:evolution
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add mosquitto for regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2016-1015{1,2}/hesiod
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new CVEs from mfsa2019-04 and mfsa2019-05
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-18335/firefox-esr as not-affected (MacOS specific)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3828/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox-esr fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: take firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1675-1 for python-gnupg
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim ceph in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim unbound in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] firefox fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa tag from CVE-2017-15105
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8337/msmtp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8337/msmtp: Update notes on upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-8337/msmtp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] django postponed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3832/libsndfile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3831/vdsm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate some older entries with vdsm, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-11307/jackson-databind
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new tb issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFU
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1677-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] ffmpeg fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new nasm issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] thunderbird fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] msmtp fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-7659: Add reference to discussion on patch.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-8341/jinja2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixed version via unstable for CVE-2019-7653/rdflib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some SAP specific CVEs as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-8343/nasm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3832/libsndfile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-10897/yum-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim gsoap.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] project zero refs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync changes for src;linux with kernel-sec status and 9.8 point release inclusion
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-835{4,5,6,7}/sox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate some ancient CVEs with spice-xpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-5784/chromium fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Merge changes included in 9.8 point release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2013-5696/glpi remove obsolete note
Henri Salo
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20124/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-14647/python2.7
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take mosquitto from dsa-needed list for regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Demote CVE-2018-20124/qemu to unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-20540/liblas via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-17567/jekyll in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2011-4116/perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take rdesktop
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7397/graphicsmagick
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7397/graphicsmagick fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1678-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add wordpress to dsa-needed list, maintainer prepared update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track fixed version via unstable for various elfutils issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1679-1 for php5
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Update notes and TODO item for CVE-2018-20764
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further note on CVE-2018-20764
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Triage CVE-2019-3832 for libsndfile in Jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-1000021/slixmpp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for lxc issue: #922169
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version in unstable for CVE-2019-6438/slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-3828/ansible as unfixed, details in upstream pull request
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-20669 as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync three CVEs for linux with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3828/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for mosquitto regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8376/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-8377/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2016-10742/zabbix
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3812/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1680-1 for tiff
Brian May
- [Git][security-tracker-team/security-tracker][master] Remove one postponed entry wich got an update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] freerdp also fixed in point update
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: take firmware-nonfree
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: r-other-x4r embeds a copy of gsoap
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add Debian bug reference for CVE-2019-8376/tcpreplay
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2019-7664 for Jessie as not-affected
Thorsten Alteholz
- Processing 2cbe32e692a97534832e24a6f0f45ec006ad1957 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Fix syntax error from previous commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 5 commits: Add CVE-2019-6454/systemd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for systemd update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1681-1 for gsoap
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1935{1,2}/jupyter-notebook
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to oss-security post for CVE-2019-6454/systemd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3812/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2018-16885/linux information with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8912/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-890{4,5,6,7}/file
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] unclaim rssh, add note
Antoine Beaupré
- [Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2019-890{4,5}/file
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1682-1 for uriparser
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] rdesktop DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim rssh.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] beep fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Revert "Triage CVE-2019-3832 for libsndfile in Jessie LTS."
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1000029/mumble assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-7164 and CVE-2019-7548 for sqlalchemy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add description for CVE-2019-7164/sqlalchemy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2019-7164 and CVE-2019-7548
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add rssh to dsa-needed for regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1660-2 for rssh
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new tintin++, uap-core issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: take systemd
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1683-1 for rdesktop
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8935/collabtive
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1684-1 for systemd
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2017-18197/libjgraphx-java
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20164/uap-core
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add association with zoneminder source package for CVE-2019-842{3,4,5,6,7,8,9}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: add ansible
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2018-16885/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-1000026/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ansible DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2017-3164,lucene-solr: unimportant
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1685-1 for drupal7
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for zoneminder CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-11439/taglib fixed in unstable via 1.11.1+dfsg.1-0.3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2016-1000236/node-cookie-signature fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16876/ansible fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take wordpress in dsa-needed
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-894{2,3}/wordpress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-3821/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove todo item related to CVE-2019-3821
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark resiprocate as removed as it was removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8331/twitter-bootstrap*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add missing source package for chromium CVE
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: claim ansible
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Cleanup CVE-2017-11573 status as issue marked unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8980/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove TODO item from several reservation duplicates
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two Micro Focus specific NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-3828/ansible fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8956/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8934/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1002161/koji
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: add evolution
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add file
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixed version for CVE-2019-8331/twitter-bootstrap4 in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add "new" PHP issue (CVE-2018-20783)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix for CVE-2018-20783/php7.3 included in 7.3.0-1 upload to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2019-8331 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-1002161/koji: Add reference to upstream issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-8934/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2019-6438/slurm-llnl via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2018-5744/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take file
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Add commit for CVE-2019-6465/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-8955/tor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some IBM specific NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-8985 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2013-7469/seafile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2015-7700/pngcrush fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-8955/tor via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] tor n/a for stable/oldstable
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add commits for CVE-2018-5744
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2018-5745
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-5744/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-8331/twitter-bootstrap3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add Debian bug reference for CVE-2018-5745/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit for CVE-2019-8907/file
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-8904
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-890{5,7}/file
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-7443/kde4libs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new drupal issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: mark CVE-2019-3828 as not affected for ansible in jessie
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Remove ansible and claim libsdl*
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] CVE-2018-574{4,5} and CVE-2019-6465 in bind9 adressed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20784/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9003/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add entry for rssh regression update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] patch refs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] QT patch refs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2018-20230/pspp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug references for qt4-x11 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2013-7469/seafile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-16886/etcd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Temporarily switch away from local (outdated) mirror
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9020/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5021/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9022/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9023/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9024/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9025/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove rssh, regression update issued
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ruby-rails-admin removed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim phpmyadmin
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate several CVEs with libmatio, but keep undetermined
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: mark CVE-2019-6798 as not affected for phpmyadmin in jessie
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: phpmyadmin precisions
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new binutils issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16886/etcd fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1686-1 for freedink-dfarc
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa entry for update which got an update via a DLA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Replace `abc` with repr(abc)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: add bind9
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1687-1 for sox
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000872/python-pykmip in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1002161/koji
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20786/{vim,libvterm}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-2537 and CVE-2019-2510 for mariadb-10.3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim sqlalchemy.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: sqlalchemy/1.3.0~b3+ds1-1 upload to experimental fixed CVE-2019-7164 and CVE-2019-7548
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-9114/ming
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1688-1 for waagent
Bastian Blank
- [Git][security-tracker-team/security-tracker][master] dla-needed: update faad2 entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: update qemu entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] update statsu
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] PHP patch references
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] semi automatic unclaim of packages with more than 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] re-claim openssh (sorry for the delay)
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] mark CVE-2018-16402 as not-affected for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 18 commits: CVE-2018-18521 will be fixed in Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] LTS/Reclaim symfony, uw-imapd
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim liblivemedia
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Revert "data/dla-needed.txt: Claim sqlalchemy."
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1689-1 for elfutils
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] libvorbis, tcpdf fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] exiv triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2016-1000276 finally rejected, remove todo note
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-915{1,2}/hdf5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9162/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-914{3,4}/exiv2 as undetermined for now
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9169/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20796/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1690-1 for liblivemedia
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2009-5155/{gnulib,glibc}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: re-add liblivemedia for CVE-2019-773{2,3}
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16867: not-affected in jessie
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim sssd
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3824/ldb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sort suite entries top-down
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add a note re. sqlalchemy.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Track proposed update for python-pykmip via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1559/openssl1.0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add hardening commit reference for CVE-2019-1559 and OpenSSL_1_1_0-stable branch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-8912/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] alos track src:openssl
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] kauth spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9192/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-11783/trafficserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2018-17581 will be fixed in Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-20786/vim
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add ldb to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1691-1 for exiv2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add sox to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: claim gpac
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8935,collabtive: Ignored for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8979,libkohana2-php: Add more information.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add ldb to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Replace reference for CVE-2018-12900/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-3824/ldb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-19518/uw-imap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3840/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-3840/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19665: same as stretch, postponed: revisit later
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Claim ldb
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] CVE-2019-3812: jessie not affected, introduced 2.6.50
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2019-3840/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add note to openssh.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1692-1 for phpmyadmin
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] chromium regression dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8979,libkohana2-php: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1693-1 for gpac
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] One issue got an update in DLA, remove no-dsa tag for respective suite
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20244/airflow, itp'ed, #819700
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Move some older NFUs associated with Apache Airflow to itp tagged entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9200/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-9200/poppler: #923414
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20797/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-20797/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9210/advancecomp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-9210/advancecomp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9211/pspp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] remove mysql-connector-python from dsa-needed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-9211/pspp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20797,CVE-2019-9199,libpodofo: Mark as no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim libvirt in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Claim openssl in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8331,twitter-bootstrap: Mark as no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] claim libraw
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2019-6501: qemu stretch & jessie not-affected
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim sox
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-12178/edk2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-12178/edk2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-12180/edk2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-3630/edk2 (as undetermined, only adding source package association)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] reserve DLA-1694-1 for qemu jessie update
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] CVE-2018-12617: remove jessie postponed
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-92{08,09,14}/wireshark (wnpa-sec-2019-{06,07,08})
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new hoteldruid issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2017-{15642,15370,18189,15372}: add commit links
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] CVE-2019-3840,libvirt: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Remove libvirt from dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] reserve DLA-1695-1 for sox
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] correct DLA-772-1 release date
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] CVE-2019-646{1,2}, CVE-2018-18064: no-dsa in jessie
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim kde4libs
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-3840/libvirt as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2019-7659/gsoap via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new nodejs issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Take ldb from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-9199/libpodofo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for CVE-2019-9143/exiv2 in experimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for tracking for CVE-2019-9144/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16846,ceph: Link to required fixing commit
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8904+CVE-2019-8906 are not in file in jessie+stretch
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9187/ikiwiki
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sort suite entries top-down by release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Record introducing commit information for CVE-2019-8906
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1696-1 for ceph
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ldb update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim jackson-databind in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add fixed version in unstable for CVE-2019-3500/aria2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update note on openssh.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2018-5744 as not-affected for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim wireshark
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1698-1 for file
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] openssl, php, ikiwiki DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add additional patch required for CVE-2019-6111
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional Debian bug reference for CVE-2019-6111
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update information for CVE-2019-5739/nodejs
Salvatore Bonaccorso
Last message date:
Thu Feb 28 22:39:20 GMT 2019
Archived on: Thu Feb 28 22:39:23 GMT 2019
This archive was generated by
Pipermail 0.09 (Mailman edition).