September 2019 Archives by thread
Starting: Sun Sep 1 09:10:31 BST 2019
Ending: Mon Sep 30 23:51:09 BST 2019
Messages: 743
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2017-16808/tcpdump via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-15531/libextractor as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] nghttp2 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] node-fstream spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add additional comment for CVE-2019-14271/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] dla: take ghostscript
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2019-11038/libgd2 from upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: update imagemagick entry
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1908-1 for pump
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] various issues in Rust crates
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] reclaim slurm-lnll
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add fixed version for DLA-1908-1/pump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new python-os-vif issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] qemu DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove postponed tag for CVE-2019-13164/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2019-15753/python-os-vif
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15753/python-os-vif
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference forCVE-2019-15753/python-os-vif
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15752/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18594/nmap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10197/samba
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add samba to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new linux issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixes in Debian branches for CVE-2019-0136
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark percona-xtrabackup as removed from archive in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15851/sox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2015-9383/freetype
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2015-9382/freetype2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2015-9381/freetype
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] xpdf n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new varnish issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: add and claim freetype
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reference commit reference for varnish issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for varnish issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track the correct set of commits for varnish (more than one needed)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15502/teamspeak-client
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15480/domoticz
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15026/memcached
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-15026/memcached
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVE-2019-13568 as not-affected in cimg
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] new firefox issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new firefox-esr issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15718/systemd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove information from CVE-2019-15851
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-15718/systemd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-15718/systemd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-10197/samba for unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add not-affected status for jessie as well for samba issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15892/varnish assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15892/varnish fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add varnish to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for samba update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] take varnish
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] freetype: TEMP-0773084-4AB1FB is CVE-2014-9659 / Savannah #43661
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] LTS/claim mongodb
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Remove information from CVE-2019-9177
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-14825 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track firefox-esr fixed from mfsa2019-26
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track firefox fixes from nfsa2019-25
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] varnish DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage firefox-esr for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage memcached for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim memcached.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] dla: take firefox and thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15718/systemd n/a on jessie
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1909-1 for freetype
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15902/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15903/expat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-15903/expat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: clarify radare2 status a little bit
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15846/exim4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add exim4 to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] stretch/buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Fix small spelling typos
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dsa-needed: claim faad2
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] CVE-2017-941{1,0} finally rejected as duplicates
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15903/expat fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15924/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] systemd fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15923/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15922/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15921/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15920/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15919/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15918/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15917/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15916/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new django-js-reverse issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15925/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15926/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15927/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add link to follow-up fix for CVE-2019-7637
Felix Geyer
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-20699/docker.io
Felix Geyer
- [Git][security-tracker-team/security-tracker][master] Adjust version for CVE-2018-20699 to first version in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-15553/rust-memoffset
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18595/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox-esr DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-21008/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-21009/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct version for version entering unstable for CVE-2018-21009
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand note on plymouth part for CVE-2018-20839
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-9619/systemd as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim exim4
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage poppler for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage expat for jessie.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim expat.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim poppler.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for wordpress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1594{5,6}/opensc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-21010/openjpeg2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Hand over exim4 DSA release to jmm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark fixed version for CVE-2019-12615 in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2017-11472
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2017-9986
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version sourcewise for CVE-2018-9465 in stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-15925/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1910-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-15921
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-21010/openjpeg2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] already commit forthcoming exim DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] wordpress fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1911-1 for exim4
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add Exim upstream commit
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] exim fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2019-10217/ansible as not affecting jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS/ansible status update
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Annotate CVE-2019-2386/mongodb as ignored for jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Unclaim poppler for now; I forgot I still need to work on xtrlock...
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS/mongodb, remove from dla-needed.txt as no open issues remain
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1912-1 for expat
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12402/libcommons-compress-java add reference for upstream commit containing fix
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: Annotate CVE-2019-12402/libcommons-compress-java as not affecting jessie
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] new bitcoin issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update affected status for CVE-2019-12402/libcommons-compress-java
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15026/memcached fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15890/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-12402
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1913-1 for memcachedb
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new libreoffice issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-15947/bitcoin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2016-7398/php-pecl-http
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16089/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove pump no-dsa entries, will be removed in 9.10 and 10.1 point releases
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix typo in CVE id for CVE-2019-0136
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Merge in changes for linux in 10.1 point release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Merge already the linux changes for 9.10 point release in advance
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage firefox-esr for jessie; doesn't look covered by DLA-1910-1, alas.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Fixup memcached/memcachedb confusion for DLA not yet published.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: Review 10.1 changelog for accepted point release updates
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Port bin/maintainers to Python 3.x.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS/claim php-pecl-http
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Review 9.10 changelog for accepted point release updates (stretch)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1481{1,2,3}/ghostscript fixed with 9.28~~rc2~dfsg-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-14817/ghostscript fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16058/pam-p11
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16058/pam-p11
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16056/python*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2019-5057/sdl-image1.2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-15946/opensc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS/unclaim poppler in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ghostscript update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add source package entries for DSA-4515-1 related CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand webkit2gtk entry for stretch and jessie
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-8375 and CVE-2017-17821
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1005{4,5,6}/suricata
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage python2.7 for jessie re. CVE-2019-16056.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2019-10054, CVE-2019-10055 and CVE-2019-10056 in suricata for Jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 4 commits: data/dla-needed.txt: Triage unzip for jessie re. CVE-2019-13232.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Correct suite for CVE-2019-13232 for unzip in stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1609{1,2,3,4,5}/libmysofa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for libmysofa issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS/claim python{2.7,3.4}
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-10217/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14511/sphinxsearch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14511/sphinxsearch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update several libsixel entries triaged by maintainer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2016-10937/imapfilter
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1503{0,1}/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reference upstream commit and pull request for CVE-2019-15486
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libreoffice DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1914-1 for icedtea-web
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track new gitlab issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim unzip
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] libsixel fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lts: triage remaining firefox-esr CVEs for jessie
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] dla: drop unzip, no pending issues
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add package versions for all webkit2gtk CVEs in DSA-4515-1
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1915-1 for ghostscript
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] dla: claim qemu
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2019-15890
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19665/qemu: jessie: ignored, patch not gonna happen
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] buster/stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12067/qemu: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16168/sqlite3 assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] rust crates CVEfied
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] trafficserver, docker DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ATS eol for oldstable
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-10044/telegram-destkop as fixed with the 1.8.4 upstream version upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1617{2,3}/limesurvey (itp'ed)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16167/sysstat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1616{5,6}/cflow
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2019-16167/sysstat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-16167/sysstat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16167/sysstat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add TODO item for CVE-2019-10214
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for clfow issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new limesurvey issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new bird issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Annotate branches for fixes for CVE-2019-16159
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new onig issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2017-11334/qemu: clarify
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2018-15746/qemu: jessie <ignored>
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13164/qemu: reference sanctioned commit
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2017-13672/qemu: jessie <ignored>
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add imapfilter to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim opensc in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Claim sqlite3 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add upstream references for CVE-2019-14939
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16163/libonig
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16159/bird
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1192{5,6}/hhvm (removed)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for stretch for CVE-2019-16159/bird
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11605/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12105/supervisor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12401/lucene-solr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1549/openssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1547/openssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1563/openssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS/add note regarding php5
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16170/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16170/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12405 (Apache Traffic Control, NFU)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs for Apache OFBiz
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5481/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5482/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-5481/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-5482/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update note for xtrlock.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-13241/flighcrew as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed fixes for flightcrew via {stretch,buster}-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for libsixel via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for node-mixin-deep via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-5481/curl: jessie <not-affected>
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] nodejs fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa tags from opensc for the upcoming DLA.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] clarify Centreon NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] xpdf NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new httpie issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update CVE-2019-3883/389-ds-base information on fix
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-10751/httpie upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-10751/httpie
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-162{29,30,31,32,33,34}/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] wordpress issues got CVEified
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15297/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream issue reference for CVE-2019-15297/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15639/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-15639/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-15297/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16163,libonig: Mark as postponed for Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim golang-go.crypto
Brian May
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track fixes for thunderbird 1:60.9.0-1 in unstable (MFSA-2019-29)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16159,bird: Mark as not-affected for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add curl to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add new issue for wpa (#940080)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new opendmarc issue, #940081
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16170/gitlab fixed in experimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim curl.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1917-1 for curl
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1918-1 for libonig
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16163/libonig: update jessie status
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1919-1 for linux-4.9
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Claim clamav and dnsmasq from dla-needed
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] CVE-2017-15124/qemu: reference complementary VNC/SASL patch
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15717/irssi fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16275/wpa assigned for 2019-7 advisory issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1623{5,6,7}/dino-im tracking
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new issues for py-lmdb (CVE-2019-1622{4,5,6,7,8)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1920-1 for golang-go.crypto
Brian May
- [Git][security-tracker-team/security-tracker][master] CVE-2017-15124/qemu: jessie <ignored>
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] dla: qemu: update
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1921-1 for dnsmasq
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] wolfssl fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new wireshark issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] reserve DSA-4522-1 for faad2
Hugo Lefeuvre
- [Git][security-tracker-team/security-tracker][master] Add openssl to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim wpa in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add httpie to dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15297,asterisk: Jessie is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Upstream commit link for CVE-2019-16056/python2.7
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Track additional fix for flightcrew via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Trck additional fix for flightcrew via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14822/ibus
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian tracking bug for CVE-2019-14822/ibus
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Three openssl issues fixed in unstable via new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1922-1 for wpa
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2019-548{1,2}/curl fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync release date for DSA-4522-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] wireshark wnpa-sec-2019-21 issue: Mark as postponed for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Remove some no-dsa tagged entry which got fixed in DSA-4522-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16319/wireshark assigned (requested to MITRE)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference patch for CVe-2016-10937 hostname validation support
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add entry for libapreq2 (#939937)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-12402 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: this is still ongoing
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] new thunderbird issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] claim poppler
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1923-1 for ansible
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Triage open CVE for libsixel/Jessie.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15031/linux in stretch and jessie
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries for ansible which got an update in DLA-1923-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16335/jackson-databind
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14540/jackson-databind
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commit for CVE-2019-14540
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian tracking bug for CVE-2019-14540 and CVE-2019-16335
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: follow security team and mark adplug CVEs as no-dsa
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add note for ampache issues
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-2182/linux information according to kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9455/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] bird fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add earlier bird fix
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove trailing whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct tracking of source package in CVE-2015-8013
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE-2019-915{3,4,5} with node-openpgp RFP/ITP
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9453/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9245/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9458/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim cups
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-2180/jessie: fixed prior CVE assignment
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9457/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9456/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9454/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9445/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1336{3,4}/piwigo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-12175/bro (and respective fixed version)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove leftover TODO item
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add as well src:bird2 for CVE-2019-16159 tracking
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dino-im DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add cloned bug for CVE-2019-16159/bird2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] AddCVE-2019-16197/dolibarr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1924-1 for python3.4
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1925-1 for python2.7
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] add dino ref
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2016-10937/imapfilter: Reference commit for hostname validation for older openssl versions
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reject of CVE-2019-9457 confirmed and will be in next list update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] opendmarc issue fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for spip issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2019-16168,sqlite3: Mark as no-dsa for Jessie
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14826/freeipa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new kvm issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2019-14835
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16378 assigned for opendmarc issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Unclaim clamav from dla-needed.txt
Jonas Meurer
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1609{1,2,3,4,5}/libmysofa fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15784/srt fixed in unstable (via new upstream version)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add another potential apache2 regression, needs to be checked
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-10092,apache2: Point to the correct fix.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reference working commits for CVE-2017-9776
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim apache2 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-13626 as not affecting libsdl1.2
Felix Geyer
- [Git][security-tracker-team/security-tracker][master] Add opendmarc to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsdl1.2 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Switch all bugzilla.novell.com URLs to bugzilla.suse.com
Paul Wise
- [Git][security-tracker-team/security-tracker][master] CVE-2019-1639{1,2,3,4}/spip assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-11184 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-19432/libsndfile (#914381)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-13139/libsndfile is fixed as well with 1.0.28-5 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-1609{1,2,3,4,5} as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1926-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] ibus fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new mosquitto issue(s)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add spip to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11779/mosquitto issue (#940654)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fix for stretch for CVE-2019-15214
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-14815/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15030/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15504/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync status for CVE-2019-15902/linux for jessie with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-15918/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15919/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15920/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct tracking information for CVE-2019-15922/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct tracking information for CVE-2019-15923/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status information for CVE-2019-15924/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync status for CVE-2019-16089/linux with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-162{29,30,31,32,33,34}/linux as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync status of CVE-2019-2181 with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2019-2182/linux status with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync status for CVE-2019-9445/linux with Ben's triage in kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-9455/linux with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ibus update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] sdl-image1.2 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-14821 use same URI schema as used for patch headers in kernel-sec/kernel-packaging
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-10205 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11754/firefox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16413/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct CVE for mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Revert "Correct CVE for mosquitto"
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11778/mosquitto (this is really distinct from the commit before)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new (vague) phpmyadmin issue, mark undetermined for now
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two new gnucobol issues, belated 60th birthday present
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for opendmarc update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15651/wolfssl fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Correct libsdl2 version of DLA-1714-1
Felix Geyer
- [Git][security-tracker-team/security-tracker][master] claim opendmarc
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-3689/nfs-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] bird, php7.3 DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Take expat from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-9619 got REJECTED (will be updated shortly on MITRE list)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsdl2 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] simple-xml fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1927-1 for qemu
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] add one missing fixed CVE ID for SDL2
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libstb fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] bin/contact-maintainers: fix Python 2 code leftover
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Typo
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Remove two leftover no-dsa tagged entries which got an update in DLA-1927-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1928-1 for php5
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] two jspwiki issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] php7.0 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1929-1 for php-pecl-http
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2019-1503{2,3} with the original itp for it
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixing commit from fork for CVE-2017-1000190/simple-xml
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-3689/nfs-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-21017/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for CVE-2018-21017/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new openconnect
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-14815/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commit for CVE-2019-16239/openconnect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15890/slirp4netns fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for libsixel for stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for CVE-2019-16239/openconnect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for libmysofa via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11251/kubernetes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-21016/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-21015/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-2101{5,6}/gpac as no-dsa for buster and stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-2101{5,6}/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16056/python3.7 fixed in unstable with 3.7.4-4 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-5477 as no-dsa for buster and stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-5477/python2.7
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-8339 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-5477/rexical
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove bird from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14826/freeipa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for expat update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-1622{4,5,6,7,8}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13616/libsdl2-image
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Cleanup one REJECTED entry
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16680/file-roller
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14806
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update note for xtrlock.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16396/gnucobol
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16395/gnucobol
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add cloned bug from #892780 for src:img
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-13568/cimg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new opencv issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-14493/opencv
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-14492/opencv
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-14491/opencv
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16714/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16705/ming
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new pam-python issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: follow with no-dsa for open-cobol
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16723/cacti
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add ibus to dsa-needed list for regression
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on regression for CVE-2019-14822/ibus
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16723/cacti
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update radare2 information for CVE-2019-16718 and CVE-2019-14745
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track new CVE-2019-167{08,09,10,11,12,13}/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1930-1 for linux
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16729/pam-python assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2019-16729/pam-python
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-5094/e2fsprogs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to commit for CVE-2019-5094/e2fsprogs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add pam-python to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim ruby-nokogiri
Brian May
- [Git][security-tracker-team/security-tracker][master] Add e2fsprogs to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Annotate e2fsprogs entry with request/info mail
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16746/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim spip (CVE-2019-1639[1-4])
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Correct ordering
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Update xen infos
Bastian Blank
- [Git][security-tracker-team/security-tracker][master] Remove one uneeded entry which is covered by the DLA-1577-1 crossreference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: add openjpeg2
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 3 commits: Track xen source package as well CVE-2017-5715, CVE-2017-575{3,4}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2019-16723/cacti
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1931-1 for libgcrypt20
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-15941/lemonldap-ng
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2019-16723/cacti
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-15941/lemonldap-ng
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Clarify more the status for CVE-2019-15941/lemonldap-ng
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for linux update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16748/wolfssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for unstable for CVE-2019-13107/libmatio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust information for DSA-4531-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] References for exiv2 vulns
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4532-1 for spip (CVE-2019-1639[1-4])
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2019-5094/e2fsprogs
Salvatore Bonaccorso
- Processing cfc83a8703cb7ddfa9b0e9932c95b9eef806ad60 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] 2 commits: Keep style of grouping source package entries, rearrange entries
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Set state to ignored for CVE-2017-575{3,4}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new dompurify issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Ignore XSA-297 for jessie
Bastian Blank
- [Git][security-tracker-team/security-tracker][master] new hunspell issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1932-1 for openssl
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] lemonldap-ng DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] suricata fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new runc issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new node-set-value issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new mongodb issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] imapfilter fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1933-1 for ruby-nokogiri
Brian May
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add Debian bug reference for CVE-2019-5094/e2fsprogs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take e2fsprogs as prepared by maintainer for DSA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add file-roller to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16707/hunspell
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16370/gradle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug report reference for CVE-2019-15052/gradle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-10747/node-set-value
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-14288 and CVE-2019-14289
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-14844/krb5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Ubuntu sec confirmed that the CVEs are meant for xpdf
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 6 commits: add file-roller
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2018-17793 got properly REJECTED
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new golang issue (CVE-2019-16276)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track Debian bug for apache2 regression
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16276/golang-1.12 tracking bug
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] node-mixin-deep no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Correct source package name for CVE-2019-10747
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new ruby-zip issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixes for src:linux issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commits from merge for CVE-2019-16892/ruby-zip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16892/ruby-zip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-10747/node-set-value adressed in exerimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new mbedtls issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new novnc, glpi issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: add spip
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] new yarnpkg, netty issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] claim file-roller for utkarsh
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] /dla-needed.txt: Add note re. pam-python.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new mediawiki issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add polarssl source package tracking for CVE-2019-16910
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-11459/evince
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust source package name for CVE-2019-5448/node-yarnpkg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16910/mbedtls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-16869/netty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-9853/libreoffice
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add netty and claim it.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] node-set-value fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2019-15290
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new exim4 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16921/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16928/exim4 assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16685/dolibarr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] golang DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for e2fsprogs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for exim4 in unstable for CVE-2019-16928
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-15847 gcc-7, gcc-8, gcc-9 <no-dsa>
Florian Weimer
- [Git][security-tracker-team/security-tracker][master] Reserve DSA for exim4 update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add further source package tracking for unstable for CVE-2019-15847
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1668{6,7,8}/dolibarr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVEs will be fixed in future upload
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1935-1 for e2fsprogs
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE will be fixed
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2019-16707
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for file-roller update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Allow again removal of package/{old,}stable entries from *-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove exim4 from dsa-needed list (already released)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16935/python* issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for node-set-value via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ruby-zip no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16941/ghidra (itp'ed)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] gcrypt, gvfs no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2019-16910/mbedtls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA for file-roller and httpie
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Expand note for CVE-2019-16723/cacti
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove some trailing whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-5448/node-yarnpkg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] allocate DSA for wpa
Yves-Alexis Perez
- [Git][security-tracker-team/security-tracker][master] remove wpa from dsa-needed
Yves-Alexis Perez
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2019-5448
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2019-5448/node-yarnpkg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-5448/node-yarnpkg fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Claim jackson-databind in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] jackson-databind fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] dla: add and claim nfs-utils
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2018-21016,CVE-2018-21015/gpac: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16892/ruby-zip: jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] dla: add CVE-2019-16723/cacti
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-13376/phpbb3: reference fixes, jessie triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] httpie fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-12412/libapreq2 assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Ignore more xen issues for jessie
Bastian Blank
- [Git][security-tracker-team/security-tracker][master] claim python2.7
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16935/python*: reference ML discussion
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16994/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-16995/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Added jython and pypy-lib for CVE-2019-16935 and marked all jessie packages as ignored.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Added statement that python2.7 should probably not be fixed but it is up to...
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Correct source package name for pypy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-1010006/atril
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16993/phpbb3 assigned for SECURITY-188 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: some postponed issues for poller will be fixed
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-17040/rsyslog
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1940-1 for linux-4.9
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-1941-1 for netty
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Drop python2.7 again.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] claim nghttp2
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Add note to nghttp2.
Mike Gabriel
Last message date:
Mon Sep 30 23:51:09 BST 2019
Archived on: Mon Sep 30 23:51:15 BST 2019
This archive was generated by
Pipermail 0.09 (Mailman edition).