April 2020 Archives by date
Starting: Wed Apr 1 05:48:58 BST 2020
Ending: Thu Apr 30 23:01:21 BST 2020
Messages: 681
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-10648/u-boot as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-645{0,1,2}/chromium
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11254/kubernetes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-11939/thrift
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-1069{7,8} as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-706{4,5,6}/php* issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add php5 again
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2166-1 for libpam-krb5
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-7009/elasticsearch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new apache issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove source package information from CVE-2020-9795
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-1934/apache2: Link directly to CVE entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2167-1 for python-bleach
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: Ignoring CVE-2020-1927 and CVE-2020-1934 for apache2 following decision for later releases.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1145{5,6}/limesurvey
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take care of releasing qbittorrent DSA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track CVE-2019-11254/kubernetes as fixed with 1.17.4-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1958: Track itp bug for druid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries for libplist which will get an update
Dylan Aïssi
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit from master branch for CVE-2020-8492
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1771 associated with JS injection to customer address book
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2168-1 for libplist
Dylan Aïssi
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new glibc issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update note for shiro.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4649-1 for haproxy (CVE-2020-11100)
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add info for CVE-2020-11100
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add fixed unstable version for CVE-2020-11100
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add reference to future TALOS advisory for CVE-2020-6096
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new gnutls28 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on gnutls28 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] DLA: Remove netkit-telne* from dla-needed.txt
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] new gpac issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2020-8835/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Marked a few CVEs for gpac as ignored following decision for later releases.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Three isc-kea issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] The vulnerable code mentioned in CVE-2020-6096 for glibc package is not present in jessie.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Fix for CVE-2020-8131/node-yarnpkg moved to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via experimental for gnutls28 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for qbittorrent update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mediawiki DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark smarty3 issues as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11494/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-5283/viewvc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-5283/viewvc as no-dsa for buster and stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] janus fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] gnutls28 fixed in sid
Moritz Muehlenhoff
- Processing 27e6b46bae5b92871ab2dd428e3058975984b1b9 failed
security tracker role
- Processing 27e6b46bae5b92871ab2dd428e3058975984b1b9 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] fix gnutls entry
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE assigned for gnutls28 issue (CVE-2020-11501)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two new firefox and firefox-esr issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] take firefox
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add gnutls28 to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-68{19,20}/firefox-esr fixed (mfsa2020-11)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track firefox fixes for mfsa2020-11
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Firefox seems to have a critical vulnerability needing a fix.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] LTS: claim firefox-esr in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update status for stretch for CVE-2020-8910/chromium
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for gnutls28 update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add back lost entry for CVE-2020-7619
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2020-10701/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-10701/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-10702/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add tag information for CVE-2020-10703 upstream's fix
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-10703/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix for CVE-2019-20485/libvirt moved to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] csync2 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-10701/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Jessie phpmyadmin is not affected by CVE-2020-11441. Quite likely no Debian...
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries for libmtp which will get an update
Dylan Aïssi
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2169-1 for libmtp
Dylan Aïssi
- [Git][security-tracker-team/security-tracker][master] Track proposed updates for csync2 via {stretch,buster}-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for tinyproxy via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2019-15690/libvncserver as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream commit for CVE-2019-19377/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10699/targetcli-fb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream issue for targetcli-fb entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11565/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-0067/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8834/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11102/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add initial information for CVE-2020-11558 and associate with gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage qemu for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim qemu.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: take firefox with Roberto's permission
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] py2.7 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add references to fixing commits in various branches for CVE-2019-18348
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: take thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] new firefox issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-11102/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1760/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1759/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove qemu from dla-needed.txt.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-1759/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-1759/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-1760/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track tag for the plymouth part of CVE-2018-20839
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-11102/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11609/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11608/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track inetutils under CVE-2020-10188
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11612/netty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixes for mfsa2020-13/firefox-esr via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list for new issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for firefox for mfsa2020-12 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2013-7488/libconvert-asn1-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2013-7488/libconvert-asn1-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add and claim libconvert-asn1-perl
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage ceph for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim ceph.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage inetutils for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage netty for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2170-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] LTS: claim inetutils in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Mark libconvert-asn1-perl as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-6817/python-bleach
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track upstream report for CVE-2020-10188/inetutils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed fix for CVE-2020-1712 via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-1712/systemd as no-dsa for buster and stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-116{19,20}/jackson-databind
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark several jackson-databind issues as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Several chromium issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-11653/varnish
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1730/libssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] one varnish n/a < buster
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update note for ceph in dla-needed.txt.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2171-1 for ceph
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2019-20637/varnish
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-20637/varnish
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2020-11653/varnish
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Reference upstream commit for CVE-2020-1730/libssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track Debian bug reference for CVE-2020-11653/varnish
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track upstream reference for CVE-2020-1730/libssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-1730/libssh
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: pick two time periods in lts-frontdesk.2020.txt
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Fix listing of suites for CVE-2020-10954/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1730/libssh fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2020-11612/netty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10707/netty which we probably should drop
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11668/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take vacant lts frontdesk slots
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2020-8832/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage varnish for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2020-8518/php-horde-data as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11669/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: php-horde-{data,trean} will be fixed
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add wiereshark issue from wnpa-sec-2020-07
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Patch for CVE-2020-1773 implements a new way for random number
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1745: Reference upstream pull request
Florian Weimer
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1745: Fixed undertow version has already been uploaded
Florian Weimer
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: Update note for shiro.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-20669
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update note in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11694/pycharm, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track new thunderbird issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add and take thunderbird
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add ZDI reference for CVE-2020-8835/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track upstream commit for CVE-2018-18020/qpdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-14834/dnsmasq fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11721/libsixel
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11713/wolfssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11725/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Shift frontdesk duty due to university exams
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11655/sqlite
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11655/sqlite3 fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Canonicalize URLs to upstream commits and ticket for CVE-2020-11655/sqlite3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11656/sqlite3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Re-claim jackson-databind
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim graphicsmagick, update note
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] CVE-2020-10188: Reference patch as applied in Fedora
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libsixel no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update references for CVE-2020-1739/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-18604/texlive-bin via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim netty
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Update item for CVE-2020-10707/netty (confirmed potential duplicate)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status of tomcat8 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track source-wise fix for CVE-2016-10243
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark libconvert-asn1-perl as no-dsa for jessie
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Drop libconvert-asn1-perl from dla-needed.txt
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-11736/file-roller
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian BTS reference for CVE-2020-11736/file-roller
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11724/nginx
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add and claim file-roller
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1172{8,9}/awl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE-2020-10188/inetutils as fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: Update note for CVE-2019-5086 in xcftools.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add and claim awl
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2172-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add initial tracking for new xen issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] qemu fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-8608/libslirp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove information on CVE-2020-10707
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-5260/git
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-5260/git via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream announce for CVE-2020-5260
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for git update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: update notes on xen in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11722/crawl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed fix for CVE-2020-8518 via {stretch,buster}-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed fix for CVE-2020-8866 via {stretch,buster}-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed fix for CVE-2020-8865 via {stretch,buster}-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2173-1 for graphicsmagick
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2174-1 for php-horde-data
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2175-1 for php-horde-trean
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2176-1 for inetutils
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] further reference for latest git issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2018-20537/liblas
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2018-2053{6,9}/liblas
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1722/freeipa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update note for shiro in jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2177-1 for git
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] new Java issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new vbox issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add first batch of MySQL related CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ignore CVE-2020-2933 for stretch
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] LTS: add and claim openjdk-7 in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process second batch of MySQL related CVEs from Oracle CPU from april
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove doubled notes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openjdk-11 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] openjdk-14 fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] virtualbox fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed versions for src:linux upload via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for mysql-5.7 issues from Oracle CPU from April 2020
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track patchset for CVE-2020-10648/u-boot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2020-5260/git
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new gitlab issues from 12.9.3, 12.8.9, and 12.7.9 releases
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track three CVEs for Oracle Solaris
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add oss-security reference for CVE-2020-11669/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync status for CVE-2020-11669 with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10932/mbedtls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openjdk-8 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] webkit2gtk upstream advisory WSA-2020-0004
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add pull request reference for CVE-2020-1736/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-1730/libssh as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-1734/ansible as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-1738/ansible as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-4658-1
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] dla: drop netty
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] LTS: add and claim git in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] dla: claim varnish
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add description for CVE-2020-11793
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Put temporary description for CVE-2020-11793 in [] brackets
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove reference to pull request for CVE-2020-1736
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Add PR with fix to CVE-2020-10684/ansible
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Add PR with fix to CVE-2020-10685/ansible
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Add PR with fix to CVE-2020-1733/ansible
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] fix PR number in prev commit
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Add PR with fix to CVE-2019-3828/ansible
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/CVE/list: Add PR with fix to CVE-2020-1737/ansible
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Add PR with fix to CVE-2020-1740/ansible
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: add note to ansible, upstream patches are available now
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Drop libperlspeak-perl. EOL'ed by Holger Levsen via...
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream issue reference for CVE-2020-1733
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Add libsixel.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: add sqlite3 and claim it
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] 4 commits: Add two new dolibarr issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-2875 and CVE-2020-2934 as ignored for stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9481/trafficserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim libsixel
Dylan Aïssi
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-9481/trafficserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10708 tracking
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] SimpleSAMLphp issue not for us
Thijs Kinkhorst
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11868/ntp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ntpd no-dsa, also check ntpsec
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add tracking bug (pinging for investigation) for CVE-2020-11868
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11878/jitsi-meet
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11879/evolution
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11880 (KDE KMail)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10709/ansible-awx, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-11880/kmail
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10683/dom4j
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-10683/dom4j
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add graphicsmagick to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2178-1 for awl
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2179-1 for jackson-databind
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2180-1 for file-roller
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: dla: claim ansible
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add and claim dom4j
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add information on CVE-2020-10691 and reference upstream pull request
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two varnish issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-10870/zim
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-1746
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Mark CVE-2020-1737 as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-606{1,2}/coturn
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2181-1 for shiro
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add upstream commit reference for CVE-2019-17455/libntlm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-706{4,5,6}/php7.4 fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-7067/PHP
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add and claim libntlm
Anton Gladky
- Processing 40c161df3c3745c138fbdb0b698549b61b1947bc failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] node-mqtt entered the archive, move from itp status to unfixed for further checks
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] node-mqtt n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-11647/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] crawl bug filed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-11647/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add awl to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] update note in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] new openvpn issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new vague resteasy issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Update note for bluez in jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add and claim openvpn
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] add ntp
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: take ntp
Adrian Bunk
- Processing 5e5006a3b740191c3887959e74699a10b46cab48 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- Processing 9ab4df7bc62bead1d4eaa2acc0c73379c02d395f failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] skopeo entered the archive, move from itp status to unfixed for further checks
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Add note for ntp
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] ntpsec n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reference upstream change for CVE-2020-11868/ntp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-11008/git
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream announce for CVE-2020-11008/git
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-11008/git fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for git update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference advisory for CVE-2020-11008/git
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2019-1002162 with atomic-reactor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take nodejs, openjdks
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] take ATS
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync status for some src:linux issues with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking for CVE-2020-10687 associated with undertow
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim awl
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11958/re2c
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add three CVEs for zulip-server, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4660-1 for awk (CVE-2020-11728, CVE-2020-11729)
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] openssl DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] openssl DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ansible: reset jessie triage ignored->no-dsa
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] new slirp issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10690/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update tracking information for CVE-2020-10690/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2020-11722 as no-dsa for Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] mark CVE-2020-11958 as not-affected for Jessie and Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update commit informations for CVE-2020-11958
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-11958/re2c
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for (old) CVE-2017-12852/python-numpy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1967/openssl fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-3898/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded copies for qr-code-generator
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded copies for axtls
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-10712 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track duplicates bugs for embedded copies for libsimpleini
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded copies for libminini
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded copies for libjsonparser
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Dump initial investigation observations of CVE-2020-10683 in dom4j.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-3898 as no-dsa
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12066/teeworlds
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20787/teeworlds
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1252{0,4}/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add link to possible patch fpr CVE-2020-3898
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] 5 commits: Put TODO item at end of list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some new NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded copies for libwhereami
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded copies of libinih
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark CVEs for teeworld as EOL in Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add mailman, no cve yet
Thijs Kinkhorst
- [Git][security-tracker-team/security-tracker][master] Put temporary description in [] brackets
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark openvpn as no-dsa for Jessie
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11946/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-125{19,21}/squid
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adjust intentation
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process many NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2019-20788
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE-2019-20788/libvncserver as different issue from CVE-2019-15690
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync some linux CVE with kernel-sec triaging from Ben Hutchings
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove information for CVE-2019-15601
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] edk2 spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12105/openconnect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2182-1 for git
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Update fixed version for CVE-2020-11494
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-16782/ruby-rack
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for three squid issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim tzdata and libdatetime-timezone-perl
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12059/ceph
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two CVEs were fixed for libgd2 with the new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commit for CVE-2020-12059/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openjdk-11 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-12059/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-12059/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-11868/ntp: adding missing patch
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11869/qemu
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] add and take qemu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-11869/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-12137/mailman assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9489/tika
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove several no-dsa tags from stretch's tiff entries
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12063 and mark it as unimportant (as non-issue)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note that maintainer prepared update for tiff in stretch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on pyton-reportlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand note for CVE-2019-17626
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] ceph fixed in unstable
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] pick empty frontdesk slot
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-17626: Remove upstream reference to commit wich does not fix the issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for python-reportlab update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12245/grafana
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-10716 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10663 information
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2019-8842/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix missing only for Jessie, so this will be done now ...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix missing only for Jessie, so this will be done now ...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update fixed version for CVE-2019-2391 and CVE-2020-7610 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix missing only for Jessie, so this will be done now ...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9488/apache-log4j2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix missing only for Jessie, so this will be done now ...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix missing only for Jessie, so this will be done now ...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-1759/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] DSA-4664-1 mailman
Thijs Kinkhorst
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2188-1 for php5
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Remove CVE-2019-3866 entry for next-point release listing
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-3828,CVE-2020-1735/ansible: jessie not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] DLA: add and pick cups
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] DLA: add and pick mailman
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] Track CVE fixes for linux via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove shadow update, it is now out of scope for last stretch point release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix missing only for Jessie, so this will be done now ...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1733/ansible: add commit
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] dla: varnish: update notes
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-12137/mailman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: add openconnect
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add notes for dom4j
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] CVE-2020-10685/ansible: jessie not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-10685/ansible: jessie not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2019-14905/ansible: jessie not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reference commit in main repository
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim apache-log4j2
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Track proposed cups update via stretch-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: Add note on CVE-2020-1769 in otrs2.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] EOL entries for LTS.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Qemu vulnerable in LTS as well and should be fixed.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Update status of squid3 in dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] dla: take qemu
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] readd php5
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-14904/ansible: jessie not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] claim otrs2
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] DLA: add note for mailman
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] webkit2gtk upstream advisory WSA-2020-0005
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] qemu DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new jbig2dec issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla-needed: add and claim jbig2dec
Dylan Aïssi
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-14864/ansible: jessie not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Track new openexr issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Conclusion for jessie regarding CVE-2020-10663. The package ruby-json should...
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Revert not-affected status for whole package for CVE-2020-10663
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-14846/ansible: reference upstream commit
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1227{8,9}/libgit2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12052/grafana
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11690/intellij-idea, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11013/helm-kubernetes, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new python-markdown, ndpi, duo issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Take ruby-json as I'm the maintainer
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add notes for openconnect and tika
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2190-1 for ruby-json
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Adjust source package name for CVE-2020-11888
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track embedded ndpi in removed ntop
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-11736/file-roller fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9482/Apache NiFi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add not-affected information for CVE-2020-119{39,40} as well for jessie
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reported bug reference for duo-unix
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2019-8842 as no-dsa for Jessie
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream commit covering CVE-2020-3898 and CVE-2019-8842
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-16782/ruby-rack as no-dsa
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-1070{0,4}/samba for 2020-04-28 release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2020-12243/openldap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11884/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openldap update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for linux update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove four CVEs which will be fixed with DSA 4667-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openjdk DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] buster/stretch triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Thank to Salvatore I now concluded that ruby2.1 is affected and should be fixed just as ruby-json.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take ruby2.1 as fixed ruby-json
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Followed later release decision to state no dsa for libgit2 CVE-2020-12278 and CVE-2020-12279.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2191-1 for dom4j
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-10663/ruby-json as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Concluded that samba and openldap are vulnerable to the same type of issue....
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Marked a few CVEs for openexr as no-dsa since earlier CVEs has been marked the same way.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] LTS: take openldap in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2192-1 for ruby2.1
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10944/nomad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1774/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2193-1 for openjdk-7
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-12272/opendmarc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openldap fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20792/opensc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim samba.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12430/libvirt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2020-1730/libssh via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-11869/qemu addressed in unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes via linux/5.6.7-1 to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10997/percona-xtrabackup
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mark nodejs as ignored for stretch (these used to be marked unimportant before...
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove CVE-2019-3016 from listing for 10.4 inclusion
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12464/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12465/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync linux list with pending CVEs for 10.4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] AddCVE-2018-21232/re2c
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] nodejs DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for tiff update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] node-mongodb spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] php-horde-* ecosystem removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-12105/openconnect as no-dsa
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add two new roundcube issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Five yaml-cpp issues fixed with unstable upload of new upstream version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10686 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10720/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-10720/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new grafana issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 4 commits: Add new teampass issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: add upstream patch for CVE-2020-1934
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Update commits for CVE-2020-1927/apache2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Use convinient short-form URLs for svn.apache.org revisions
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: After investigating further, remove samba from dla-needed.txt; this is a minor...
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add and claim roundcube
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] new ffmpeg, cpp-httplib issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] py38 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-9431 as not-affected for wireshark
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-6196 and CVE-2018-6197 will be fixed with upload to Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2016-10711 will be fixed with upload to Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2017-8798 will be fixed with upload to Jessie
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Trck commits for CVE-2020-8492/python in various branches
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new CVE-2020-1227{5,6,7}/gitlab issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1102{2,3}/jquery
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] vlc DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add sid status for vlc
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9387/mahara
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1165{1,2}/salt
Salvatore Bonaccorso
Last message date:
Thu Apr 30 23:01:21 BST 2020
Archived on: Thu Apr 30 23:01:26 BST 2020
This archive was generated by
Pipermail 0.09 (Mailman edition).