November 2020 Archives by thread
Starting: Sun Nov 1 07:14:04 GMT 2020
Ending: Mon Nov 30 23:39:39 GMT 2020
Messages: 789
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2425-1 for openldap
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add version for openldap until we can drop it with the CVE assignment
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage python-cryptography, blueman, and wordpress
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-26566/motion as not-affected for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-5991/nvidia-cude-toolkit as ignored for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-25739/ruby-gon
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-25659/python-cryptography
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-5991/nvidia-cuda-toolkit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2426-1 for junit4
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim jupyter-notebook
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2427-1 for spice
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2428-1 for spice-gtk
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-2567{0,1,2,3}/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-15250,junit4: fixed in unstable
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for wordpress issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add wordpress to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Marked CVE-2018-19352 as not-affected. Vulnerable code introduced
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] 5 commits: Triage CVE-2020-27743 in libpam-tacplus for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27743: Reference GHSA advisory
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage odoo issues
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] gitlab fix for unstable
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/CVE/list: Mark CVE-2019-14902/samba/jessie as <ignored>. Too difficult and risky to backport.
Mike Gabriel
- [Git][security-tracker-team/security-tracker][master] new tmux issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-25692/openldap assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit references for tmux issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10937/ipfs, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some further NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] reclaim python3.5
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2429-1 for wordpress
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27618/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take blueman
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add tracking items for CVE-2020-26521 and CVE-2020-26892
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2430-1 for blueman
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2019-10255: stretch version doesn't have a specific func for
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27616/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-27616/qemu as not-affected for buster and older
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2020-27152/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-19059/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19059: Annotate tag for upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19060: Annotate tag for upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-19060/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-19149: Annotate upstream commit with tag
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2018-19149/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26939/bouncycastle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference GHSA advisory for CVE-2015-8612
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-15238/blueman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-13225,libonig: Stretch is not affected
Markus Koschany
- Processing 01c6a66937c85cb4cd8f0c76d22b7beb1a52cf16 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2431-1 for libonig
Markus Koschany
- Processing bd23b4114dfc0359a535c4b4ce0d86996eaab501 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Fix a typo
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add LTS frontdesk for 2021.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2432-1 for jupyter-notebook
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Take LTS FD free slots
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27743: Track introducing and fixing commits
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take lemonldap-ng and obs
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27347/tmux now assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25693/cimg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2020-25693/cimg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] take some FD weeks
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] lts: take frontdesk weeks
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] new codemirror-js issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add new spice-vdagent issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary descriptions for spice-vdagent issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take next year's front-desk slot
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 4 commits: data/dla-needed.txt: Triage bouncycastle for stretch LTS (CVE-2020-26939).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28049/sddm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2020-25668
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2016-6606 is not fixed in DLA-1821-1
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28049/sddm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add sddm to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new GDM issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reference commits for spice-vdagent issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-202-27981 (withdrawn by its CNA)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2020-16125
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for spice-vdagent issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim cimg
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25693
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-15238/blueman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-17510/shiro
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25669/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10776
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-14389
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8037/tcpdump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8036/tcpdump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add three new salt CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 6 commits: data/dla-needed.txt: Triage sddm for stretch LTS (CVE-2020-28049).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new libexif issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2433-1 for bouncycastle
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] dla: fix syntax
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2434-1 for gdm3
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] dla: claim sympa
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE/list: sort release entries after their package entry
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for sddm update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add details for CVE-2020-22278
William Desportes
- [Git][security-tracker-team/security-tracker][master] accountsservice n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2020-27347/tmux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Associated undetermined for now CVE-2020-22278
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Wordpress issues fixed via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2435-1 for guacamole-server
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2020-16116: upstream code base has changed a lot with
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Clean cacti note entries in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28241/libmaxminddb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28196/krb5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new asterisk issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] git-lfs n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] two linux issues n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new consul issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new node-chart.js issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 5 commits: data/dla-needed.txt: Triage krb5 for stretch LTS (CVE-2020-28196).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2436-1 for sddm
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Take libexif and tcpdump
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-8037/tcpdump
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4784-1 for wordpress
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28241/libmaxminddb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28196/krb5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28328 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18926/{raptor,raptor2}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28327/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2017-18926/raptor2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Replace commit for CVE-2017-18926/raptor2 with upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference post with additional information for CVE-2020-28327/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-7746/node-chart.js in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-25201/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-28327 as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25201/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-28049/sddm via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Triage CVE-2020-28242 and CVE-2020-28327 for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Update classification for CVE-2020-7746/node-chart.js
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track upstream commit for CVE-2020-27618/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-27618/glibc as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry for CVE-2020-0452/libexif
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27618/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2437-1 for krb5
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2438-1 for raptor2
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for raptor2 update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version of libexif for CVE-2020-0452
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-8037/tcpdump via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2439-1 for libexif
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Take mupdf from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop cacti from dla-needed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Update mp3gain info
Stefan Fritsch
- [Git][security-tracker-team/security-tracker][master] Adjust version for mp3gain in CVE-2017-144{08,09,10}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVEs with the gitlab 13.3.9-1 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to gitlab blogpost for 13.3.9 upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-10777 in mp3gain not completely fixed, add bugs
Stefan Fritsch
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-7760/codemirror-js via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference mitigation for CVE-2020-26880
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2020-27618 in glibc for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Track CVE fixes for linux/5.9.6-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libexif DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: update wireshark note
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2019-20326/gthumb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28168/node-axios
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa tags for upcoming poppler update in Stretch.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim libmaxminddb and pacemaker in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-15275/moin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVe-2020-25074/moin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add moin to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take free slot for frontdesk
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark rust-webpki-roots as removed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-26519/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2017-18926/raptor2 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25658/python-rsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lts: update note on libproxy
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reference upstream commits for new moin issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2441-1 for sympa
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim brotli
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] dla: claim zabbix + reference patch
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25704/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove one no-dsa tagged entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Tree CVEs for salt fixed via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fbcon issue in linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] tcpdump spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26950/firefox* from mfsa2020-49
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for moin update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add and take firefox
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim packages that need to be rebuilt due to CVE-2019-11840
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2442-1 for obfs4proxy
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2443-1 for rclone
Brian May
- [Git][security-tracker-team/security-tracker][master] Resolved test failures
Brian May
- [Git][security-tracker-team/security-tracker][master] 2 commits: claim moin
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Revert "Reserve DLA-2443-1 for rclone"
Brian May
- [Git][security-tracker-team/security-tracker][master] LTS: claim firefox-esr
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-25637/libvirt via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim spice-vdagent freerdp
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-26950/firefox via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-26950/firefox-esr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25697/libx11
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-14366 as NFU (Keycloak)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some new NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 9 commits: CVE-2018-10925: removed duplicated package entry
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Take over zeromq3
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2443-1 for zeromq3
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2444-1 for tcpdump
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] CVE-2020-26154: Add upstream commit reference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-13927/airflow
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2445-1 for libmaxminddb
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim ansible, fossil and webcit in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8694
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-8694: Reference upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28368/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track two CVEs for nextcloud-server
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2446-1 for moin
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove fossil from dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2447-1 for pacemaker
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2020-28196/krb5
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-25654/pacemaker
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-16016/chromium
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track thunderbird for CVE-2020-26950 (mfsa2020-49)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-13958
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-869{6,8}/intel-microcode
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8695/intel-microcode
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: take thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-12755/kio-extras
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-26950/thunderbird via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add thunderbird to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two new openldap issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add openldap to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Re-add openldap; CVEs yet to be assigned
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2448-1 for firefox-esr
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25708/libvncserver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25707/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25706/cacti
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4789-1 for codemirror-js
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] takae thunderbird
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-2569{4,5,6}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE fixes for samba via experimental
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-13954
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-28368 as EOL for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-13958 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] mark CVE-2020-13958 as NFU: AOOO
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: zabbix: precise triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-257{09,10}/openldap assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] claim qemu
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-2569{4,5,6}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for intel-microcode via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25705
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-5991/nvidia-cuda-toolkit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes in MariaDB 10.5.8 and shipped in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct tracking of CVE-2020-5991 (fix not in unstable)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update information on 4 CVEs for MariaDB
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-14342/cifs-utils fixed via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] pacemaker DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new hibernate issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-1232{1,2}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2449-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2450-1 for libproxy
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Update TODO for CVE-2020-12321
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2020-12912
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version CVE-2017-5982/kodi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2020-12912 information with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-25658/python-rsa as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25658/python-rsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Use full commit id for CVE-2017-9310
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2020-25707/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference advisory for CVE-2020-26575/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25707/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-26575/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28030/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-28242
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-28327: Reference upstream issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-28242: Add reference to upstream issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28327/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28242/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for libxml2 via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28638/tomb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-2774{5,6}/slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28638/tomb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27746/slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27745/slurm-llnl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-25658 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-27746 and CVE-2020-27745 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reference commit for CVE-2020-25219 directly
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry for CVE-2020-25219/libproxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25657/m2crypto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25688 (NFU)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25711 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-2836{2,6,7}/golang*
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: update brotli status in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS: claim python3.5 in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: Add note for libhibernate3-java for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-12321 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVEs from INTEl-SA-00402 (firmware-nonfree)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Cleanup trailing whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-28638/tomb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-28638/tomb as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9849/sqlite3
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-9991/sqlite3
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2451-1 for libvncserver
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2016-10246/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2016-10247/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2017-6060/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2018-1988{1,2}/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2452-1 for libdatetime-timezone-perl
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] LTS: update samba status in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: Add note re. notes.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25713/raptor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lts: take firmware-nonfree
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] motion fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8277/nodejs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libproxy: CVE-2020-26154 and CVE-2020-25219 fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update packages claimed for golang-go.crypto rebuild.
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2453-1 for restic
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2452-2 for libdatetime-timezone-perl
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-8277 as no-dsa for Stretch
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] mark CVE-2020-8277 as end-of-life for Stretch
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Take intel-microcode & raptor2
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add epoch to version for libdatetime-timezone-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove annotation that DLA-2447-1 fixed CVE-2020-25654
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add note for intel-microcode
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] latest nodejs issue is in c-ares
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add new CVEs for firefox via mfsa2020-50
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr issues from mfsa2020-51
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add thunderbird issues from mfsa2020-52
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openldap update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-7919 as not-affected for golang-1.7,8 in Stretch)
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] new libxstream-java issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] lts: take firefox-esr and thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25660/ceph
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25657/m2crypto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25798/limesurvey
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to bug report for packer upload issue
Brian May
- [Git][security-tracker-team/security-tracker][master] Track firefox fixes for issues in mfsa2020-50
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for firefox-esr addressed via mfsa2020-51
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-25657: Reference upstream issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: mark CVE-2020-26217 as <no-dsa> for stretch
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-25716 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: external-check: Handle vendor prefixed entries
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update information for CVE-2020-25660/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-16135/libssh via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new node-y18n, node-nodemailer issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] LTS: add/take mediawiki in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-28366 as ignored in golang-1.7 and golang-1.8 for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] firefox-esr DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28915/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2454-1 for rclone
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2455-1 for packer
Brian May
- [Git][security-tracker-team/security-tracker][master] Add two new drupal issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Tracked fixed version for thunderbird upload via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track unstable upload for samba (adressing some CVEs)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-28638/tomb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28724/python-werkzeug
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: remove <postponed> tag from fixed CVE
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS: triage CVE-2020-7774 as <no-dsa> for stretch
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS: add drupal7 to dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] drupal7: Refer already done upload from maintainer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-14341 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25723/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed CVEs for linux upload via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20933/influxdb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2457-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2458-1 for drupal7
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Track fixes for three CVEs for libmatio's unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim zsh in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add libxstream-java to dla-needed.txt and claim it.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28941/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] qemu postponed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27616
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-26271,libxstream-java: Fixed in unstable.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add new issues in moodle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] c-ares fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-2894{8,9}/php-pear
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26215/jupyter-notebook
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-5991/nvidia-cuda-toolkit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-28196/krb5 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-25660/cepth
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-25660: Add complete list of upstream commits
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25660/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-25723/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: LTS: add influxdb to dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-26682
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] update note in dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2016-6175/php-gettext
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28912/MariaDB
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8569 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-4788/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-10753/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-24889/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Demote CVE-2020-24890/libraw to unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-26215/jupyter-notebook fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28168/node-axios
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim php-pear.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim jupyter-notebook.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new resteasy issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new rust-lock-api, rust-time issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] associate CVE-2020-28924 with src:rclone
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for rust-lock-api issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-26235 is assigned for RUSTSEC-2020-0071 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-26235/rust-time
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-25713/raptor2 as postponed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Drop raptor2 from dla-needed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-28924/rclone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28924/rclone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-28974/linux assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-28974/linux via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-20740/pdfresurrect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-20739/vips
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on older CVE-2013-7484
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-25269/inspircd via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28928/musl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: LTS: remove <no-dsa> from CVE-2020-26217, as it will be investigated and fixed
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Take musl
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2379-3 for mediawiki
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28928/musl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-28928/musl as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2020-20740 for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-19667/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27748//xdg-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-27748/xdg-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27748/xdg-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two fontforge issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes via experimental for various gpac affecting CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for mupdf update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: Ensure ~/.cache exists before writing out tracker data cache
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] 3 commits: distributions.json: Add trixie
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] tracker_data.py: Use explicitly octal mode on mkdir call
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2459-1 for golang-1.7
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] remove postponed-tag due to recent upload
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2460-1 for golang-1.8
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2461-1 for zabbix
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] lua5.4 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add note for xdg-utils
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] krb5 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry which got an update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-20739/vips as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process three NFUs
Salvatore Bonaccorso
- Processing 7e2e12cdb8607190114c1fe276aee94901332723 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] gpac: Seveal CVEs previously fixed in experimental fixed in unstable
Salvatore Bonaccorso
- Processing e1908dba653837b05eab27945ddf2ebd06f490fb failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] 2 commits: xrootd has entered the archive, remove ITP entry
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update three CVEs related to slurm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Expand TODO item for further checking
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25454/grocy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-19668/libsixel
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new mutt issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-28896/mutt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-17178 as postponed
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim salt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] dla: claim mariadb-10.1
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] LTS: triage, add libsixel and mutt to dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] dla: update wireshark status
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2462-1 for cimg
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] dla: claim mutt
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] lts: take xdg-utils
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add notes for claimed packages
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-19667/imagemagick as <postponed> for stretch
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2463-1 for samba
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] LTS: remove <postponed> from CVE-2020-10704 in suites where it is being fixed
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-14019/python-rtslib-fb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim vips
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2020-28896/mutt via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2464-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2465-1 for php-pear
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Two asterisk issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes via experimental for mariadb-10.3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] webkit2gtk upstream advisory WSA-2020-0008
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-4797-1
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] pulseaudio n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add new spip issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add spip to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28053/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2020-28053/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1778/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-1777: Adjust source package name
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28053/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2020-28053/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track some fixes for xen issues via experimental upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-28984/spip assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-13132/yubico-piv-tool fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-7928/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-7926/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-7925/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20802/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20803/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20804/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-20805/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20923/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20924/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-2392/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-2393/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27777/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-27778/poppler
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim spip
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-13131
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26890/matrix-synapse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28991/gitea
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-15436/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-15437/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for neomutt via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE fixes for xen as uploaded to unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2016-10516/python-werkzeug was fixed via pu
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-27778/poppler as postponed for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-27661 as not-affected for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add commit to fix CVE-2020-25625
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] new pam issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] qemu: Annotate some upstream commits
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27780/pam: Reference upstream commits
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29040/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-29040/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20925/mongodb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mongodb: stretch triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-14363/libx11
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] TWo wireshark issues fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Annotate upstream commits for CVE-2020-2657{0,1,2}/opensc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28935/unbound
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4798-1 for spip
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27776/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add missing CVE reference to DSA-4798-1 for spip
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27775/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27774/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27773/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27772/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27771/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27770/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27769/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27768/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27767/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27766/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27765/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27764/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27763/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27762/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27761/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27760/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27759/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27758/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27757/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27756/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27755/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27754/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27753/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27752/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27751/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27750/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25663/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25664/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25665/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25666/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25667/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25674/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25675/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25676/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-27767
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] imagemagick triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] unbound eol, move spip to dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: sabnzbdplus fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new nomad issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Fix small typos in notes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26243/nanopb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26212/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-26243/nanopb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29074/x11vnc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-29074/x11vnc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27783/lxml
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-26238 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26237/highlight.js
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim drupal7 in dla-needed.txt
Gunnar Wolf
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2466-1 for drupal7
Gunnar Wolf
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track drupal7 as well under CVE-2020-2894{8,9}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] imagemagic: stretch triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] new ceph issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark CVE-2020-26237as postponed
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add lxml x11vnc to dla-needed.txt
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-25707 as postponed for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tag for CVE-2018-19787
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2467-1 for lxml
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-15947/bitcoin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-2766{2,3}/glpi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track linux CVEs fixed with buster-pu upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-26160/golang-github-dgrijalva-jwt-go via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new kamailio, jupyter-server issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-26232: Reference commit directly
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] golang-github-go-ethereum: Replace some NFUs with ITP referenced entry
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-291{29,30}/libslirp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-28924/rclone
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Take libproxy from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lts: take drupal
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] lts: DLA for drupal7 sent
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] imagemagick: stretch triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26243/nanopb fixed version in unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-28638/tomb
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark mariadb-10.3 issues as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for mariadb-10.3 via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for three linux CVEs via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-20934/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29368/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29369/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29370/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-7925/mongodb: not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29371/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29372/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29373/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-29374/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for x11vnc update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for vips for buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libproxy update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2018-14938 has been fixed in recent upload
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2020-26880: Add notes on versions including the mitigation
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-29074/x11vnc via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed wireshark update for buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: some qemue CVEs have been fixed with recent upload
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] mark qemu CVEs as postponed
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-15945: annote upstream commit with tag
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-12695/wpa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-2894{8,9}/php-pear
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8325/rubygems fixed in unstable with reintroducing version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 5 commits: Track fixed version for CVE-2019-8324/rubygems in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-29040/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for older CVE-2013-4363/CVE-2013-4287
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2017-{0899..0903}/rubygems
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for several 2018 CVEs for rubygems addressed in reintroducing version
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for openldap
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] claim x11vnc and slirp
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2470-1 for zsh
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2471-1 for libxstream-java
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update remaining status in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries which are listed in DLA-2470-
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Sync some linux CVEs with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27814/openjpeg2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27813/golang-github-gorilla-websocket
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-28361 as no-dsa for stretch
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reclaim vdagent, update note
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] CVE-2020-25676/imagemagick: stretch ignored
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-25663/imagemagick: stretch not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] one IM issue n/a, one ignored
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] imagemagick/CVE-2020-25664: link with CVE-2020-27752
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] wpa fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] DLA-1604-1 never fixed CVE-2018-19787
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] ceph fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] webkit2gtk upstream advisory WSA-2020-0009
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27815/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2472-1 for mutt
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28926/minidlna
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-12695/minidlna
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-25663
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-15257/containerd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim golang-github-dgrijalva-jwt-go
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2473-1 for vips
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Update referenced PR for CVE-2020-26160
Brian May
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2474-1 for musl
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] LTS: claim pdfresurrect in dla-needed.txt
Roberto C. Sánchez
Last message date:
Mon Nov 30 23:39:39 GMT 2020
Archived on: Mon Nov 30 23:39:44 GMT 2020
This archive was generated by
Pipermail 0.09 (Mailman edition).