July 2019 Archives by thread
Starting: Mon Jul 1 05:58:02 BST 2019
Ending: Wed Jul 31 23:03:13 BST 2019
Messages: 766
- [Git][security-tracker-team/security-tracker][master] mark ansible in jessie as no-dsa. Can update along with coming releases
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: update note
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Sort CVE-2019-10156/ansible suites top-town
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1311{7,8}/libxslt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: tracker_data.py: string form for IssueStatus
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1837-2 for rdesktop
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] dla: add libxslt
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] libsixel: additional info and triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] libgig: reference BTS
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Remove two explicit set unfixed stati
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: mark libxslt as explicitely unfixed
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] dla: add python-django
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] libsixel: reference BTS
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12781/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add notes for CVE-2019-8457/sqlite3
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] CVE-2017-2579/netpbm-free: add link to reproducer
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add note regarding pdns to dla-needed
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-12781/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Revert "Switch temorarily to wikimedia mirror"
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13118/libxslt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13117/libxslt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13107/libmatio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-10153/fence-agents as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13107/libmatio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Update/bump note for CVE-2019-11027 in ruby-openid.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1292{8,9}/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12970/squirrelmail
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1842-1 for python-django
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2019-12781/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openssl, firefox DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] drop no-dsa entries for CVE-2019-1543
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] lts-cve-triage: use jessie's (not wheezy's) unsupported packages list
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] new audiofile, imagemagick issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: lts-cve-triage: display lts' nodsa sub-state
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] dla: add squirrelmail
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13147/audiofile: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] new exiv issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] xpdf triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Clarify status for CVE-2019-9929/cfengine3 as confirmed to upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13137/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13147/audiofile
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13136/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13135/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference POC for CVE-2019-12594/dosbox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for two libpng1.6 issues after upload to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track upload of fence-agents for stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12164/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-12164/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs (Spacewalk)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update severity for CVE-2019-1292{8,9}qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix wrong use of CVE id for qemu issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13173/node-fstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-2579/netpbm-free: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1843-1 for pdns
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1317{8,9}/calamares
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-12494/poppler: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Fix package version for DLA-1843-1, add to data/CVE/list
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] Add new gitlab CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add association as well with calamares-settings-dabian for CVE-2019-13179
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10183/virt-manager
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] exiv2: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] exiv2: jessie triage (2)
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-2580/netpbm-free: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reference commit to help with CVE-2019-13179/calamares
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2019-1317{8,9}/calamares
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add python-django to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries for python-django which will get an update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Cleanup some doubled indentations
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13173/node-fstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-13173/node-fstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new nsd issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] "new" linux issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add reference for uvcvideo issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2019-2101 information with kernel-sec repository
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1844-1 for lemonldap-ng
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Consolidate git.k.o URLs for commits
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new go.crypto issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream issue for CVE-2018-16838
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-16838/sssd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2019-12781/python-django for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13233/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1322{6,7,8,9}/deepin-clone, itp'ed, #873045
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13232/unzip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries for bro for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13232/unzip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit references for CVE-2019-13032
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-16807 and CVE-2018-17019 for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13239/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13241/flightcrew
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2019-10072 as not-affected in jessie
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Properly sort suites top-down
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] nsd/CVE-2019-13207: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13312/ffmpeg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-11272/libspring-security-2.0-java: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13311/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13310/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13309/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13308/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13307/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13308/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13306/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-13307/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ffmpeg n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Take two weeks of LTS front desk hat
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13305/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13305/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13304/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13300/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13304/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-13297/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2019-13295/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13295/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] xpdf n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] three imagemagick issues IM7-specific
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update note on CVE-2019-8457/sqlite3 in data/dla-needed.txt
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] three new IM issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13232,unzip: Link to fixing commit
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim unzip in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] django DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add note that I've pinged upstream on CVE-2019-11027 in ruby-openid.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add note on depending commit for CVE-2019-13232
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand note for CVE-2019-13179 and add information on umask override
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13290/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add addtiional changes for CVE-2019-8457/sqlite3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13290/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-5827/sqlite3 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-8457/sqlite3 as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13207/nsd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5052/sdl-image
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5051/sdl-image
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13345/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13345/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13314/virt-bootstrap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13313/libosinfo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-13313/libosinfo as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13313/libosinfo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixing commits for calamares issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-1063{8,9}/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13351/jackd2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13351/jackd2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 16 commits: gen-{DSA,DLA}: Update mappings release and codenames
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13313/libosinfo: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-13290/mupdf: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13290: Add note on not-affected status
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] remove me from front desk duty
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] CVE-2019-7165,CVE-2019-12594,dosbox: Link to fixing commits.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Adjust dist directory on security archives for distribution
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update hardcoding of the name of the testing security suite
Paul Wise
- [Git][security-tracker-team/security-tracker][master] Disable fetching of backports
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track gitlab/11.10.8 upload to experimental for easier merge fixing version...
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13351/jackd2: jessie: fix package name
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13345/squid3: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] taking another week this month
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2019-11841/golang-go.crypto: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim squid3.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add note re. golang-go.crypto
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add fixed version for two CVEs affecting mupdf in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1845-1 for dosbox
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track some fixes for binutils via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1846-1 for unzip
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] jasperreports removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1847-1 for squid3
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: work is still ongoing on this one
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim libspring-security-2.0-java
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10192/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10193/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: update notes
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage redis for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim redis.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add bug for CVE-2019-10192 and CVE-2019-10193 in redis.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13391/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed fix for pound via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13391/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-13045/irssi in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1848-1 for libspring-security-2.0-java
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13132/zeromq3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA for zeromq3 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13132/zeromq3 fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] claim zeromq3
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1849-1 for zeromq3
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage zeromq3 for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Revert "data/dla-needed.txt: Triage zeromq3 for jessie" - was just removed and...
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add my upstream issue asking for clarification on CVE-2019-10193 in redis.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add upstream announcement in/around CVE-2019-10192 and CVE-2019-10193 in redis.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] buster/stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-1317{8,9}/calamares, #931391, #931392
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-10160/python3.7
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-9740/python3.7 adressed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add more information on CVE-2019-9948/python* versions
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update fixed version for python3.7 for CVE-2019-9947
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] AddCVE-2018-11563/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-9947 and CVE-2019-9940 fixed for python2.7 in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-10160/python2.7 in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] calamares-settings-debian no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage python3.4 for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Claim python3.4 from data/dla-needed.txt
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add commits for CVE-2019-10193/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking for XSA-300
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dsa-needed: Clarify in which suite update is needed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13454/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13454/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update entry for CVE-2019-12900/bzip2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove bzip2 from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to followup fix for bzip2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new CVEs from mfsa2019-21
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVEs from mfsa2019-22
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add src:nss for CVE-2019-11729
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add commit references for CVE-2019-11729/nss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track nss fixes via unstable (fixed in 2:3.45-1)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for firefox and firefox-esr in unstable (mfsa2019-2{1,2})
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix typo in version string for firefox-esr in NOTE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage otrs2 for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: claim otrs2
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Return ruby-openid to the pool with explanation.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2019-10193 in redis is not vulnerable in jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1850-1 for redis
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2019-10193 for redis is not vulnerable on stretch either.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Sort suites entries for CVE-2019-10193/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-12973,openjpeg2: Jessie is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2016-9112,openjpeg2: remove no-dsa tag for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] mark ruby-openid as undetermined for now, even upstream has now idea what this is about
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1852-1 for python3.4
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] Mark freebsd-utils as removed from everywhere
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fix for x11vnc issue in experimental for easier merging to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dosbox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13240/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-7189/php
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-12652/libpng1.6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] readd bzip2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] two libonig issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage nss for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage php5 for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-13232/unzip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-1322{4,5}/libonig
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12838/slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-12838/slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox, redis DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add source package association for CVE-2019-13504/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track fixes for buster and stretch for firefox-esr for two unimportant issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Move CVE-2019-13504/exiv2 from undetermined to unfixed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] pound was reuploaded and fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new ruby-mini-magick, wavpack issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs from external check
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-1252{5,7,9}/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11360/iptables
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-11360 as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove buster entries for CVE-2019-11455
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Do not track specific source package for CVE-2019-101031{1,2}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on duplicate assignment of CVE-2019-9686
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add thunderbird issues from mfsa2019-23
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-10072/tomcat9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13458/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark otrs2 issues as no-dsa for those clarified for back to stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVe-2019-12746/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove now properly REJECTED CVEs for monit and pacman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-13161/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13161/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-12827/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010310/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage ruby-mini-magick for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1322{4,5}/libonig fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ruby-mini-magick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1853-1 for libspring-java
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries which got an update in DLA-1853-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Update information for CVE-2016-4609
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS/claim nss
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS/unclaim php5
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-7189 no-dsa for buster and stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add php7.3 source package as well for CVE-2017-7272
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12827 and CVE-2019-13161 for asterisk fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1019{0,1}/knot-resolver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand note for one undetermined older issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for know-resolver with more detailed description
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-10191/knot-resolver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20852/python issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixied information for CVE-2019-1010318/wavpack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-1010315/wavpack (fixed in 5.1.0-6)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-1010317/wavpack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-1010319/wavpack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim libonig in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] MITRE confirmed rejection of CVE-2019-1010318
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed calamares-settings-debian update via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two wavpack issues (CVE-2019-101031{7,9}) fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-10714/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13135/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-9834/netdata
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13590/sox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust severity for CVE-2019-11719 and CVE-2019-11729
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13590/sox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add pound
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] new vlc issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream issue reference for CVE-2019-1010016
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2019-1010011/abcm2ps
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13602/vlc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-1010004
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13602 fixed in vlc 3.0.7.1-2
Sebastian Ramacher
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2019-1010006/evince
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add src:atril for CVE-2019-1010006
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove note for CVE-2019-13044
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010305/libmspack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010307/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove now uneeded TODO
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-101030{1,2}/jhead
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2019-101030{1,2}/jhead
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-7169/shadow in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] jessie triage
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10200 (NFU)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12164 with NOTE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13611/python-engineio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libxslt no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] remove typoed entry
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim exiv2.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-1010011/abcm2ps
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-984{8,9}/libreoffice
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010060/cfitsio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010299/rustc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13615/vlc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13618/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13615/vlc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13618/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13616/sdl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libreoffice DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010018/zammad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2018-1000154 with src:zammad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13115/libssh2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13225,libonig: Jessie is not affected.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add initial tracking for openjdk-11 for unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12854/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2019-1010011
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010057/nfdump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Java updates
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove for now severity assessment for nfdump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new virtualbox issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1854-1 for libonig
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add lts-do-call-me for Debian LTS
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13115/libssh2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new Oracle MySQL issues from Oracle CPU July 2019
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add more maintainers to lts-do-call-me
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update note for neovim in dsa-needed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13272/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13631/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13626/libsdl*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove TODO item from CVE-2019-13625
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010083/flask
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking for openjdk-12 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13619/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-9893/libseccomp via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for mysql-5.7 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13636/patch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] drupal n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] lts-do-call-me: clarify postgresql situation
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010263/libcrypt-jwt-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add xorg reference for CVE-2018-20839
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13636/patch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1833-2 for bzip2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Adjust DLA 1833-2 entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim patch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1395{1,2}/gdnsd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-1395{1,2}/gdnsd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010279/suricata
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010251/suricata
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010266/node-lodash
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12815/proftpd-dfsg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for squid upload to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2019-11727/nss as ignored
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-13272 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] gdnsd non-issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dosbox fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] openjdk-8 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] claim python2.7
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1855-1 for exiv2
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] update for gdnsd
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libmatio fixed in experimental
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] gdnsd upstream fixes
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13504/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for unzip via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-12730/ffmpeg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13962/vlc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13648/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010261/gitea
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010054/dolibarr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010069/abcm2ps
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim openjdk-7 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1856-1 for patch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13640/qbittorrent
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10746/node-mixin-deep
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-3890/evolution-ews
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] give up on wpa
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13989/dpic, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-122{09,10}/pam-u2f fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010239/cjson
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13390/ffmpeg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13611/python-engineio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian Bug reference for CVE-2019-13640/qbittorrent
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for linux update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track source package for CVE-2019-13509 for docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for pam-u2f via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13453/zipios++
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1857-1 for nss
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] ELTS/claim squid3
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13453
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim libsdl2
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] LTS/update status of CVE-2019-12527/squid3
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12527: Wrap long note
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-10746/node-mixin-deep in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-12527/squid3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010275/helm-kubernetes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010287 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2019-1000008 with helm-kubernetes (itp'ed)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsdl2-image, sdl-image1.2: jessie re-triage, commit links
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Process one more NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010262/scapy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010142/scapy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsdl2-image, sdl-image1.2: re-triage jessie, commit link
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-10746 as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12216: jessie re-triage, add commit link
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010065/sleuthkit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1858-1 for squid3
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add fixed version for two flightcrew issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Clarified state of CVE-2019-1010142 with MITRE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for upstream issue on CVE-2018-18444
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-2054/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2018-3646/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010247/libapache2-mod-auth-openidc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two patch issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13638/patch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim proftpd-dfsg in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] openjdk-8, openjdk-11 DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] One Java issue n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add reference to reporters post on CVE-2019-12815/proftpd-dfsg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track buster-pu update for CVE-2019-10746/node-mixin-deep
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13509/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-3977: add follow-up fix
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1859-1 for bind9
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] dla-needed: reclaim packages, update notes
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Associate source package tinymce with CVE-2019-1010091
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: new CVE for patch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark two asterisk CVEs as no-dsa for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim ruby-mini-magick
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13917/exim4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2016-4608,libxslt: Jessie has been fixed already
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1860-1 for libxslt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add patch to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add exim4 to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-7635: remove no-dsa triage in jessie
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: add libssh2 and claim it
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for sdl-image1.2 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for libsdl2-image issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-16883/sssd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] take DLA-1861-1 for libsdl2-image
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2016-10522/ruby-rails-admin as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-101022{2,3,4}/aubio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010228/dcmtk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010218/cherokee
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-5051: add commit link, fixed in jessie
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: remove libsdl2-image entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: remove pound
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reserve DLA-1862-1 for linux
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Move CVE-2019-5051 listing
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-12456 as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update notes for CVE-2018-20839/{systemd,xorg-server}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add proftpd-dfsg to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes on CVE-2019-12164
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark wavpack as no-dsa in Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: take firefox-esr and thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10173/libxstream-java
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-7635: add commit link for SDL_image-1.2
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim imagemagick
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13454/ImageMagick: <ignored> in jessie
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark vlc as EOL in Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Adjust source package name for CVE-2019-13454
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14241/haproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new xymon issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2019-12815/proftpd-dfsg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-13574/ruby-mini-magick in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] neovim DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add commit references for upstream fixes on CVE-2015-464{5,6}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] xymon issues fixed in unstable via new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reassign CVE-2019-13615 to libebml library
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14248/nasm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14248/nasm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit references for CVE-2019-13345/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct reerences for CVE-2019-12525/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12529: prefix commit reference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12525/squid: fix protocol for patch reference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for various CVEs for libsdl2-image via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Try to resolve confusion in CVEs for xymon
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some further NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10101{89,90}/mgetty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark mgetty as no-dsa for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2019-1010299 as ignored for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] new openldap issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla-needed: update sdl-image1.2 entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] dla-needed: cleanup and update hdf5 entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13139/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13139/docker.io fixed in experimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new ansible issue (CVE-2019-10206)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-0202 (Apache Storm)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-11779 (NFU, Apache Storm)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13917/exim4 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA for exim4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10207/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13391/imagemagick: upstream patch broken
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add notes on CVE-2019-14249/dwarfutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libebml commits
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-13565/openldap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2019-13139/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13139/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-10206/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1730-3 for libssh2
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010182/rust-yaml-rust
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010174/cimg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010161/libcrypt-jwt-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix source package name for CVE-2019-1010220/tcpdump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two openldap CVEs fixed in unstable via new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1864-1 for patch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add note on patch for dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10184/undertow
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add link to bug report on why tomcat8 FTBS in Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20854/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20855/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20856/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for advisory to CVE-2019-13917/exim4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14274/mcpp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14275/fig2dev
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-14276/fig2dev
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14275/fig2dev
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS/claim exim4
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 10 commits: follow security team with no-dsa for CVE-2019-10206 in Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add master commit reference for CVE-2019-13917
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add further note regarding ruby-openid.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] LTS/Annotate CVE-2019-13917/exim4 as not affecting jessie; remove entry from dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10744/node-lodash
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-10744/node-lodash
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Prepare releasing of DSA for patch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove some (confirmed) duplicates assignment from DWF project
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11922/libzstd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14284/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14283/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add notes on followup fixes for CVE-2018-1000156
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Clarifiy notes on followup fixes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2018-1000654/libtasn1-6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for libsdl2-image via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Proces some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-13990/libquartz{,2}-java
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add William Blough to lts-do-call-me list
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13990/libquartz{,2}-java
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1010259/salt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-14275/fig2dev in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove todo item for CVE-2019-1000033
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2019-13012/glib2.0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-13012/glib2.0 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add information on CVE-2019-14282
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12730/ffmpeg fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for libsdl2-image for stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for patch update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1865-1 for sdl-image1.2
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Correct sdl-image1.2 version for DLA-1865-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] swftools removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1429{5,6}/upx-ucl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference or CVE-2019-14295
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug number reference for upx-ucl issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add some ancient linux CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference further fix for functional regregression in unzip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000654/libtasn1-6
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track proposed update for CVE-2019-14275/fig2dev via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-13313/libosinfo via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14247/mpg321
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-14249/dwarfutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14372/libav
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14371/libav
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1846-2 for unzip
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark liblas as removed from the archive for unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking for CVE-2019-14373
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] one more CVE left, so claiming again
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1177{2,3,4} (NFU in Apache VCL)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove information from two confirmed duplicates and REJECTED CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add three CVEs for dolibarr (CVE-2019-11199, CVE-2019-11200, CVE-2019-11201)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14267/pdfresurrect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1429{5,6}/upx-ucl fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3881/bundler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update details for tomcat8
Brian May
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-7189/php5 ignore in Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14431/matrixssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-143{61,79}/jackson-databind
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-143{61,79}/jackson-databind
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: follow security team with no-dsa for CVE-2019-14247 in Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10203/pdns
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-10203/pdns as no-dsa.
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1552/openssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 5 commits: add jackson-databind
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-14267/pdfressurect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Drop cfengine3 again, confirmation received that Debian's...
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: syntax fix
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1730-4 for libssh2
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add information on CVE-2019-1010127/vcftools
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim glib2.0
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-14274/mcpp as no-dsa for buster and stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14274/mcpp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new gitlab issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1444{1,2,3}/libav
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Resolve CVE assignments for jackson-databind issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14444/binutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2015-9290/freetype
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-1010142 not-affected in Jessie
Brian May
- [Git][security-tracker-team/security-tracker][master] 2 commits: vcftools fixed in jessie as well
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add freetype
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add tracking for CVE-2019-9824/slirp4netns
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1866-1 for glib2.0
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Drop <no-dsa> tags for CVE-2018-16428/glib2.0/jessie and...
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] claim wpa
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] claim libav (for triaging newly reported CVEs)
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Mark libssh2/jessie as not affected (any more) by CVE-2019-13115
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Revert "data/CVE/list: Mark libssh2/jessie as not affected (any more) by CVE-2019-13115"
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-0203/subversion
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-11782/subversion
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new src:chromium issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new icedtea-web issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add and take subversion
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1438{2,3}/libopenmpt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-20860/libopenmpt assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14381/libopenmpt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1867-1 for wpa
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14380/libopenmpt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for subversion update
Salvatore Bonaccorso
Last message date:
Wed Jul 31 23:03:13 BST 2019
Archived on: Wed Jul 31 23:03:16 BST 2019
This archive was generated by
Pipermail 0.09 (Mailman edition).