April 2021 Archives by date
Starting: Thu Apr 1 08:00:49 BST 2021
Ending: Fri Apr 30 22:23:32 BST 2021
Messages: 736
- [Git][security-tracker-team/security-tracker][master] Add assigned nettle CVE
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference Debian bug for nettle issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark plinth issue as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track plinth proposed fix via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21409/netty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29349/mahara
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-23980/python-bleach
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2614-1 for busybox
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2021-29648 with kernel-sec
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] underscore, openjpeg2 DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] fixup DSA entry
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2615-1 for spamassassin
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-29424/libnet-netmask-perl as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-22876/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-22890/curl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for ldb update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30002/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30004/wpa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29421/pikepdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28994/kopanocore
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-28994/kopanocore
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29421/pikepdf bug reference
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2021-3345
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2021-3326/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29657/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3481/qtsvg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2020-13757/python-rsa: fix reason
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-4051/dojo: reference patch
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22696 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2021-29939/rust-stackvector
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27973/piwigo
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-21772/lib3mf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-20305/nettle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2020-24995/ffmpeg
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2021-3426/python3.9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: add ruby-nokogiri following conversation with initial triager
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2021-23980: reference directly commit instead of merge commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim php-pear
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] 3 commits: Claim libxstream-java in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-28834/ruby-kramdown via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2616-1 for libxstream-java
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark open CVE of libxstream-java as fixed in unstable
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim qemu in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker] Pushed new branch update_CVE-2021-3426
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] 2 commits: openexr no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][update_CVE-2021-3426] Use square brackets
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-15227,nette: Remove no-dsa tag
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] LTS: Update status of packages
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] 3 commits: Update information about CVE-2021-3426
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker] Deleted branch update_CVE-2021-3426
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] update notes
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2021-22890/curl as not-affected for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage python-bleach for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-25290 as no-dsa for stretch
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2618-1 for smarty3
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Correct ordering
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim gsoap
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry which got an update in DLA-2618-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Six chromium issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2619-1 for python3.5
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] Remove one postponed issue which was adressed in DLA-2619-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two libpdfbox2-java issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] netty DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add/take lib3mf
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3482/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28165/jetty9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28164/jetty9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28163/jetty9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22137/elasticsearch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22136/kibana, itp'ed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22135/elasticsearch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21416/python-django-registration
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20308/htmldoc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20307/libpano13
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-29662: Add reference to blogpost
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30151/ruby-sidekiq
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28658/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2021-28658/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-28658/python-django via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2620-1 for python-bleach
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new umoci issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Associate umoci issue to CVE-2021-29136
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28851/golang-golang-x-text
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add GHSA reference for CVE-2021-29136
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-29136: directly reference the fixing commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new redmine issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30130/phpseclib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim ruby-activerecord-session-store
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] new node-glob-parent issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new golang-github-containers-image issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new mediwiki issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36310/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36311/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36312/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36313/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30178/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Correct CVE id for one linux issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Move CVE-2018-16831 to DLA-2618-1.
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Package has no reverse depends and very unlikely someone use this
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Remove ruby-activerecord-session-store [6228ca3]
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] NFUs / kfreebsd issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Drop no-dsa tagged entry which got update in DLA-2618-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3483/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] LTS: re-claim shiro and xmlbeans; getting back on track
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Take python-bleach from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21404/syncthing
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21404/syncthing
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update notes for CVE-2019-20790 (indicating revisit)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] MediaWiki security pre-release announcement: 1.31.13 / 1.35.2
Henri Salo
- Processing 4f5b2fdf5a90966326eeae5a7fb5793764e40dbb failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Reverting commit as there was following error: 299286: error: bug name...
Henri Salo
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30184/gnuchess
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36314/file-roller
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove TODO item
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-3448/dnsmasq
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Adjust commit id for CVE-2021-3483
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new imagemagick issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new imagemagick issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: New imagemagick issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for curl issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2621-1 for php-pear
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29154/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lib3mf DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new ruby, podofo, binutils, glpi issues (concludes external check)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new ffmpeg issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage python-django for stretch LTS (CVE-2021-28658).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2622-1 for python-django
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] mediawiki fixed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: dla: add note author
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for linux upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-23980/python-bleach via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-29421/pikepdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28166/mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-28166/mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new clamav issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixed version for CVE-2021-28166/mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Revert fixed version status for CVE-2021-28166
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-17380,qemu: remove no-dsa tag. Fixed by new patch series for
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30130/php-phpseclib3 tracking
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking for CVE-2021-30130/php-phpseclib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-30130/phpseclib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] xen, mediawiki DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2021-27851/guix assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Claim edk2 in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-29424/libnet-netmask-perl via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add note about fork of chezscheme in racket
David Bremner
- [Git][security-tracker-team/security-tracker][master] mark one mediawiki issue as n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-29662
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2018-1285/log4net
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-29376/ircii
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] kramdown DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new rustc issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ffmpeg n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: new rustc issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] various bugs filed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] various bugs filed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] more bugs filed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new gsoap issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update tracking for ruby-rexml as present in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-36314/file-roller
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-30004/wpa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-28302/pupnp-1.8
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage libpano13 for stretch LTS (CVE-2021-20307).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage mediawiki for stretch LTS (CVE-2021-20270).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage ruby-kramdown for stretch LTS (CVE-2021-28834).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-3468 in avahi for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-3482 in exiv2 for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-29376 in ircii for jessie LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-20305 in nettle for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Take libpano13
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-3474 in openexr for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2016-5007/libspring-java: precision
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2624-1 for libpano13
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] qtsvg fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add second bug reference for clamav issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update informaton for clamav issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] clamav issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NM fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2021-3465
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3494/foreman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30500/upx-ucl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30499/libcaca
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30498/libcaca
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2399{1,3}/thunderbird (mfsa2021-13)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-23369/node-handlebars
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-23368/node-postcss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29425/commons-io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2139{2,3,4}/matrix-synapse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new mongo-tools issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] one mediawiki issue n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] one more thunderbird issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage clamav for stretch LTS (CVE-2021-1405).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-20309 and CVE-2021-20243 in imagemagick for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2020-36309 in nginx for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-29376 in scrollz for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-21404 in syncthing for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2020-28469 in node-glob-parent for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Take clamav
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] resolve one TODO
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ruby-carrierwave have no any reverse dependencies. Very unlikely
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3482/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3472/xorg-server
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add xorg-server to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] rust-stackvector fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim mediawiki
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] xorg-server fixed in sid
Julien Cristau
- [Git][security-tracker-team/security-tracker][master] Assign xorg-server, but we wait for more exposure first
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28421/fluidsynth
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] tomcat9 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new mpv issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take courier-authlib
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] CVE-2021-2816{3,4,5]/jetty9 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-21366/node-xmldom
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3496/jhead
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3497/gst-plugin-good1.0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3498/gst-plugins-good1.0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2625-1 for courier-authlib
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for gst-plugins-good1.0 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36322/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add some new and old rustc issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2626-1 for clamav
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage xorg-server for stretch LTS (CVE-2021-3472).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-30498 & CVE-2021-30499 in libcaca for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-30145 in mpv for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-3481 in qt4-x11 for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-3481 in qtsvg-opensource-src for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage libjs-handlebars for stretch LTS (CVE-2021-23369).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add note for libjs-handlebars.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2021-3496/jhead
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3496/jhead
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-30178
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] one imagemagick issue confirmed for IM6
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2018-1271/libspring-java: fix reference
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25735/kubernetes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20288/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20288/ceph
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27815/exif
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-23368 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36120
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: Pick subversion
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20313
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two new chromium issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27905/lucense-solr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2942{7,8,9}/gradle
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3499 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new zuilp-server issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage imagemagick for stretch LTS (CVE-2021-20312).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-23991, CVE-2021-23992 & CVE-2021-23993 in thunderbird for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-21372, CVE-2021-21373 & CVE-2021-21374 in nim for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-30469, CVE-2021-30470, CVE-2021-30471 & CVE-2021-30472 in...
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2627-1 for xorg-server
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3445/libdnf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2021-3445/libdnf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29338/openjpeg2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28300/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28590/slic3r
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2020-28590
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-28300/gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track for now experimental fix for ruby-rexml (CVE-2021-28965)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-21401/nanopb via unstable
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3502/avahi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22879/nextcloud-desktop
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add three NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libtpms fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2618-2 for smarty3
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-4051/dojo as fixed in 1.15.4+dfsg1-1 for sid and bullseye
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop bullseye entry for CVE-2020-4051
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two new wordpress issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28055/centreon-web
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-29447/wordpress as unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-23369 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-23369/node-handlebars via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed clamav update via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed dojo update via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track update for node-handlebars via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage jetty9 for stretch LTS (CVE-2021-28163,...
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage & CVE-2020-36314 in file-roller for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-28421 in fluidsynth for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-28300 in gpac for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-29447 in wordpress for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add commit link for CVE-2021-21416 in python-django-registration.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] CVE-2018-11039/libspring-java: reference tracker and commits
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2018-11040/libspring-java: reference tracker and commit
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] 2 commits: Directly reference the fixing commit from upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries for wpa which need to be included in update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-349{2,3}/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2018-11040/libspring-java: affected versions
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2018-15756/libspring-java: reference tracker, commit and affected versions
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Track qemu fixes via unstable upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for node-glob-parent via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-29450/wordpress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for wordpress
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-25864/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28156/consul
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3503/wildfly
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3505/libtpms
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2628-1 for python2.7
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop no-dsa entry which got update in DLA-2628-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference additional testcase for CVE-2020-36193
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE-2021-28965/ruby2.7 fix for unstable via 2.7.3-1
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-28166/mosquitto
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-23133/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track two fixes for CVEs for golang-1.16 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: nextcloud-desktop no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adjust xscreensaver versioning (6.0.0 -> 6.00 according to upstream)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2021-23133/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2021-23369/libjs-handlebars as postponed for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Drop libjs-handlebars from dla-needed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29155/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for python-bleach update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for xscreensaver fix
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2629-1 for libebml
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Track fixes for leptonlib via unstable as NMU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark (for now) knot-resolver all no-dsa and drop if from dsa-needed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-28421/fluidsynth
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add and claim wordpress
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Correct name for wordpress maintainer
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Take jackson-databind
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] add wordpress
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Add trailing parens.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2021-29428 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] mark temporary CVE for xscreensaver as no-dsa
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for xorg-server update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new thunderbird issues from mfsa2021-14
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: add libspring-java and zabbix following factorable work with ELTS
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr issues from mfsa2021-15
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new firefox issues from mfsa2021-16
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove postponed tagged entries for thunderbird
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr and thunderbird to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] LTS: tage cgal
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] CVE-2021-27927/zabbix: stretch not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-107{6,7}/nvidia-graphics-drivers-tesla-460
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-107{6,7}/nvidia-graphics-drivers-tesla-450
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-1076/nvidia-graphics-drivers-tesla-440
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-1076/nvidia-graphics-drivers-tesla-418
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-1076/nvidia-graphics-drivers-legacy-390xx
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-1076/nvidia-graphics-drivers-legacy-340xx
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-107{6,7}/nvidia-graphics-drivers
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new gpac issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-20228/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for firefox-esr via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track firefox fixes via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-1076/nvidia-graphics-drivers-legacy-390xx fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Marked CVE-2020-12460 for opendmarc because it has been done for buster and...
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] Mark one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2945{7,8}/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20208/cifs-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream references for CVE-2021-20208/cifs-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add note and recliam package
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark CVE-2021-23368 as n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3506/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: add firefox-esr
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Take firefox-esr
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Track fixes for chromium via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] lts: take thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] CVE-2021-20288/ceph fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-1076/nvidia-graphics-drivers-tesla-418
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for thunderbird via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed tnef update for buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for php-pear update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark old hdf issues as unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] nim fixed in sid (was apparently meant to target experimental, though)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] more bugs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for gradle issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add some more gpac issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29462/pupnp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Strip no-dsa tags for wordpress for stretch which'll receive an update
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3508/pdfresurrect
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3507/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29950/thunderbird
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2630-1 for wordpress
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2122{2,3,4,5,6}/chromium
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add intially two CVEs for openjdk-11, more to follow with the Oracle CPU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new vbox issues from April CPU
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] update status for CVE-2021-29950, confirmed by jcristau
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new mysql issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2021-29457 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] mark CVE-2020-15260 as not-affected for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] dla: take openjdk-8
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20208/cifs-utils
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] pdfresurrect unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add note on libhibernate3-java
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2631-1 for zabbix
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29950 for DLA 2609-1 (thunderbird)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2021-1076 as no-dsa for nvidia-graphics-drivers-legacy-340xx
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2021-29949/thunderbird
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Drop note for CVE-2021-29950 as mfsa2021-17 titles have been corrected
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for new set of CVEs for gpac
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking bugs for mysql-8.0 issues from April Oracle CPU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add assigned CVE-2021-31523 for xscreensaver
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference google project zero issue for CVE-2021-31523
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-29462/pupnp-1.8
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two IBM specific NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track more gpac assigned CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-23922/giflib
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4896-1 for wordpress
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2020-28590 as not-affected for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add gst-plugins-good1.0
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add Debian bug reference for ruby-sidekiq
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add bug ref for phpldapadmin
Moritz Muehlenhoff
- Processing 4bcfe55d41886a5d2b2c0c748e264d17adbb8568 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] fix syntax
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2632-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] nagios4 non issuex
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] imagemagick triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1199,CVE-2018-1257,CVE-2018-1272,CVE-2020-5421/libspring-java: stretch ignored
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21416/python-django-registration
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-216{1,3}/openjdk-17
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add new round of Debian bug references for gpac issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark leptonlib issues as no-dsa as they are simple crashes (can be fixed via point release)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Several chromium issues fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add webkit package versions for the fixes in WSA-2021-0003
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for wpa update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for leptonlib via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-28658/python-django as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-349{7,8}/gst-plugins-good1.0 fixed via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-15078/openvpn
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for two nvidia-graphics-drivers-tesla-450 CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-23169/openexr
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for gst-libav1.0
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for gst-plugins-bad1.0 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] gst-plugins-bad1.0: Add reference to upstream merge request
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for gst-plugins-base1.0 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for gst-plugins-ugly1.0 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: add note for gst-plugins-good1.0
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] lts: take gst-plugins-good1.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one Trend Micro specific NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixes for nvidia-graphics-drivers via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-31607/salt
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-31597/node-xmlhttprequest-ssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-3498/gst-plugins-good1.0 n/a on stretch
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2633-1 for firefox-esr
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] lts: drop postponed entries for fixed thunderbird issues
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2634-1 for openjdk-8
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] DLA-2634-1: fix version
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] add pjproject and ring
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3507/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for nvidia-graphics-drivers-tesla-460 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2635-1 for libspring-java
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2636-1 for pjproject
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] One Java issue is Windows-specific
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim drupal7 in dla-needed.txt
Gunnar Wolf
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2637-1 for drupal7
Gunnar Wolf
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] openjdk-11 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for drupal7 issue (SA-CORE-2021-002)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Make CVE fixed for DLA-2634-1 CVE-2021-2161
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove cross-reference for DLA-2634-1 from CVE-2021-2163
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29470/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22207/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-29470/exiv2 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-25864/consul via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-28421/fluidsynth
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3496/jhead via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed jackson-databind update via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] gst DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-31607
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for fluidsynth via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Pick up salt again
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2638-1 for jackson-databind
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged jackson-databind entries which got a DLA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22204/libimage-exiftool-perl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-28543/varnish-modules
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29469/node-redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional note for CVE-2021-29469/node-redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take opendmarc
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] 2 commits: Strip no-dsa tags for opendmarc for stretch which'll receieve an update
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26291/maven
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update of opendmarc via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 7 commits: nothing todo for openexr
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2021-29376
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: take imagemagick
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] mark CVE-2021-26291 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-29469/node-redis via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-29469 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3176{0,1,2}/webmin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30145/mpv fixed version via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2640-1 for gst-plugins-good1.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] lts: take gstreamer
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] add libimage-exiftool-perl to dsa-needed
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: link to preliminary ansible update
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Take libimage-exiftool-perl from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2021-2264/virtualbox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new shibboleth-sp issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for shibboleth-sp issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream issue for CVE-2021-3502
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: claim jetty9
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-29470/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add shibboleth-sp to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36325/jansson
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-31804/leocad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29473/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE id for shibboleth-sp issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU, concludes external check
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new unbound issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2641-1 for gst-plugins-base1.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2642-1 for gst-plugins-bad1.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2643-1 for gst-plugins-ugly1.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2644-1 for gst-libav1.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Try to take care of releasing the DSA for libhibernate3-java and shibboleth-sp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27223/jetty: reference patch
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Swap CVE-2021-2161 and CVE-2021-2163 information
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream commits for CVE-2021-2163
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for shibboleth-sp update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-31607/salt via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-13672 assigned for SA-CORE-2021-002
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] Demote CVE-2020-36325/jansson to unimportant
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29472/composer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3518/libxml2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3517/libxml2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3516/libxml2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3514/389-ds-base
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3501/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] triage nvidia-graphics-driver issues for stretch (390.xx)
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] libxml2 no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add four new redmine issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] commit refs for exiv2
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] track envoyproxy RFP
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] gsoap non issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add and claim composer
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] openvpn fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for new chromium issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Try to clarify the disputed status of CVE-2020-36325
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-29473/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for libxml2 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed versio nfor CVE-2021-31826/shibboleth-sp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one Micro Focus NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29482/golang-github-ulikunitz-xz
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2521{4,5,6}/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for bind9 issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Start tracking of CVE-2020-36326
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add tracking for CVE-2021-29476
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add reference for gst-plugin-base issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3520/lz4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-23382/node-postcss
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: update comment for CVE-2020-15260 in Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-7731/golang-github-russellhaering-gosaml2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27839/ceph n/a on stretch
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-31879/wget
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-23382/node-postcss via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20254/samba
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-20254: Reference upstream bug from the advisory (will be public later)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-20254: Reference upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] bind9 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2019-0160,edk2: Stretch is not affected
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] new node-browserslist issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Also remove no-dsa tag for CVE-2019-14584,edk2.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] 2 commits: lts: assign libimage-exiftool-perl to Utkarsh
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] fix commit refs for one exiv issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4907-1 for composer
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add notes for CVE-2021-25216/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-23364/node-browserslist as ignored for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference CVE-2021-23364/node-browserslist
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream commit for CVE-2021-25215
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2021-25214/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2021-23364/node-browserslist
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libhibernate3-java update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25319/virtualbox
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21417 (which though is a duplicate of CVE-2021-28421)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-28899/liblivemedia
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-30027/md4c
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-30027/md4c
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-31916/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add actual status for CVE-2021-31916, wich was fixed in sid upload
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new set of klibc issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20254/samba
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed node-redis update via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for nvidia-graphics-drivers via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for nvidia-graphics-drivers-legacy-390xx via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for openvpn via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] cups n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new djvulibre issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new bundler issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new babel issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add reference to pull request for CVE-2021-20095/python-babel
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add oss-security reference for klibc issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Sort CVEs as versions
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2946{3,4}/exiv2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-36326
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream commit for CVE-2021-22207
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2021-3520/lz4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3520/lz4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-22207/wireshark
Salvatore Bonaccorso
Last message date:
Fri Apr 30 22:23:32 BST 2021
Archived on: Fri Apr 30 22:23:34 BST 2021
This archive was generated by
Pipermail 0.09 (Mailman edition).