August 2021 Archives by thread
Starting: Sun Aug 1 06:44:35 BST 2021
Ending: Tue Aug 31 23:11:15 BST 2021
Messages: 763
- [Git][security-tracker-team/security-tracker][master] LTS: mark CVE-2020-17523/shiro as <not-affected> for stretch
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-35525/postsrsd via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2724-1 for condor
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim tomcat8 and apache-directory-server in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove apache-directory-server from dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] telegram-desktop fixed in experimental
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] aspell DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Correct source package name for CVE-2021-33900
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2725-1 for lrzip
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tags for upcoming lrzip security update
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-30465 as no-dsa for stretch
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 16 commits: Mark CVE-2021-22930/nodejs as end-of-life for stretch
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] dla: take varnish
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-34556 and CVE-2021-35477
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-11988,xmlgraphics-commons: Fixed in unstable
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] new glances issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-23418 in glances for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2021-31810 & CVE-2021-32066 in jruby for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] new gradle issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] mod-auth-openidc fixed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2726-1 for shiro
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-34556 and CVE-2021-35477
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3669/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3673/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3622/hivex
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 5 commits: data/dla-needed.txt: Triage pyxdg for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-32751 in gradle for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Take packages already working on
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Take mosquitto
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-33813/libjdom1-java
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-13881/libpam-tacplus
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2727-1 for pyxdg
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add some NFUs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add some more NFUs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2728-1 for vlc
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry for pyxdg which got update in DLA 2727-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3622/hivex
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixed version via unstable for CVE-2021-33813/libjdom2-java
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Cleanup CVE-2020-35137
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: mark CVE-2020-22027 as ignored for stretch
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add two hoteldruid issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] xmlgraphics-commons spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3679/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27511/prototypejs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Revert "Process NFUs"
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 8 commits: data/dla-needed.txt: Triage asterisk for stretch LTS (CVE-2021-32558)
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2729-1 for asterisk
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-37601/prosody as not-affected for stretch instead
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Track proposed buster-pu update for xmlgraphics-commons
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2730-1 for libpam-tacplus
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via experimetnal for CVE-2016-11086/ruby-oauth
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2731-1 for wordpress
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Track proposed buster-pu update for libpam-tacplus
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop libkohana2-php; warrants an ELA instead
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Remove todo for CVE-2021-38084/courier
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27511/prototypejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38084/courier
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27153: Reference directly commit on git.kernel.org
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry for CVE-2020-27153
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-20298/openexr: stretch postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa entries for update of jetty in DSA 4949-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add DSA number for jetty9 update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3723{1,2} and associate it with atomicparsley
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim pjproject
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3682/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2021-3682/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] bullseye triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3682/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38115/libgd2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38115/libgd2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update notes on CVE-2019-8396/hdf5
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] otrs/znuny fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add amd64-microcode to dla-needed
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] add Note about mosquitto
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Take mupdf
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] dla: remove postgresql-9.1, package is not in stretch
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] dla: add rustc with notes to remember fixing #928422 with the next update
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-19609 - stretch is not affected
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Revert "CVE-2020-19609 - stretch is not affected"
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Update mupdf affected versions for buster and stretch
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add references to upstream commit for CVE-2018-1988{1,2}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] mupdf - binary from jstest_main.c is not packaged
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-38115/libgd2 as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add znuny commit for CVE-2021-36091
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2733-1 for tomcat8
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-30639,tomcat8: Stretch is not affected
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] bullseye/buster triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36221/go
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2021-36221
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-30639,tomcat9: Buster and Bullseye are not affected
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-30639/tomcat9
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add several new issues for libelfin
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add some basic information for CVE-2021-3681
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE/2021-34432/mosquitto ignored in old versions
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add tracking bug for asterisk covering CVE-2021-32686
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update dla notes for mosquitto
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Clarify 49c364ab for mupdf
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Triage CVE-2021-3622 in hivex for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] drop a few no-dsa entries for exiv, which will be fixed along in DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] remove some no-dsa entries for issues lined up with next update
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Update notes for mupdf
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] more ansible updates
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Sort some entries top down in suites
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add link to the upstream commit for CVE-2021-38084/courier
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] one otrs issue undetermined
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-38084: Add upstream tag information for future reference
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Associate #991705 with CVE-2021-29457
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-36221/golang-1.15
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries from CVE-2021-29457
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] exiv2: add note
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36584/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-36584: Add reference to upstream commit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-36584/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove bullseye no-dsa tagged entries for otrs2 wich got an unblock
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3635/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new lynx issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38160/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38155/keystone
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: clarify who's tracking mosquitto
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage asterisk for stretch LTS (CVE-2021-32686)
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Track two CVEs associated as well with MariaDB and fixed in supported releases
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove NFU entry from rejected CVE which was withdrawn
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3639/libapache2-mod-auth-mellon as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] ansible DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-33037,CVE-2021-30640,tomcat9: Fixed in unstable
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track via experimental for lynx issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38165 for lynx
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for bluez
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38166/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38173/btrbk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29922/rustc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-38173/btrbk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fix into bullseye for xmlgraphics-commons update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38193/rust-ammonia assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] VE-2021-38191/rust-tokio assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-38165/lynx
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2021-38155 in keystone for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] exiv2 bullseye-security update
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add lynx to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-35368/modsecurity-crs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage lynx for stretch LTS (CVE-2021-38165)
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reference upstream patch for CVE-2021-38165
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38185/cpio
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Take lynx from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38165: link to upstream CHANGES entry for 2.9.0dev.9
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29923/go
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove trailing whitespaces in CVE list file
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixes for mariadb-10.5 via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove additional whitespaces
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2734-1 for curl
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Sync some linux issues with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-38204 as unimportant
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen ( at holger)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-38202/linux as not affected for all current suites
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-38201/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-38200/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2735-1 for ceph
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] lts: reclaim openjdk
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] dla: remove stale entry for pillow
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36770/{perl,libencode-perl}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-36770: Reference fix for libencode-perl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2736-1 for lynx
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Not making any changes to a foo-needed.txt file may also indicate a misspelled...
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] embedded-code-copies: dereference tiff3
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-36386: Add note on introduced regression
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update notes for CVE-2021-3502
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37623/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2021-36770/libencode-perl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2737-1 for openjdk-8
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-32815/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-34334/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] tomcat DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lynx fix for bullseye
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] bugnums
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for lynx update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-36770/perl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-34335/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37615/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37616/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37618/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37619/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37620/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-20217-37621/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37622/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3672/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3672/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] claim embargoed c-ares
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for c-ares update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2738-1 for c-ares
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] new opensysuser issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-3672/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new firefox issues from mfsa2021-33
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr issues from mfsa2021-34
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38155/keystone
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] cpio fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add new set of STARTTLS issues to be checked in more detail
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three liblivemedia issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update notes on CVE-2020-19715 and CVE-2019-13110
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38372/tojita
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two CVes related to yii, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark two mupdf issues as no-dsa for buster
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3690/undertow
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note on tomcat9 regresssion for CVE-2021-30640
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track firefox-esr fixes for mfsa2021-34 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] take firefox
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process several new NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-32798/jupyter-notebook
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-32797/jupyterlab
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new rust-tar issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new rust-hyper issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38511/rust-tar assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new redmine, node-tar, edk2 issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-25678, CVE-2021-20288, ceph as no-dsa for Stretch
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] dla: clarify python-babel notes
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20314/libspf2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-20314/libspf2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libspf2 update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2739-1 for libspf2
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track regression for cpio fix for CVE-2021-38185
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-37156/redmine
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for node-tar issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] node-tar fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] firefox DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process three NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: take firefox-esr and thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add new thunderbird issues from mfsa2021-36
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixes for firefox for mfsa-2021-33 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-229{39,40}/nodejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2021-22930 and correlation to CVE-2021-22940
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-22940 as not affected for bullseye and older
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21675/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21676/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21677/libsixel
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21678/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21680/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21681/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21682/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-21683/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Apache mod_proxy HTTP2 request line injection
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-21684/fig2dev
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add source package for CVE-2021-33193
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new ffmpeg issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new QT issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-24741/qt
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-24742
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for node-tar via buster-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark node-tar as no-dsa for buster and bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38593/Qt
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add bullseye-security update for firefox
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-33193/apache2 fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2740-1 for firefox-esr
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2741-1 for commons-io
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-29425,commons-io: Remove no-dsa tag for upcoming security update
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] nodejs, apache bullseye security fixes
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] one shiro issue n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track several CVEs for tensorflow, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38614/polipo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two pluxml issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38597/wolfssl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update two glibc CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-32686 in asterisk for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3677/postgresql
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3639/libapache2-mod-auth-mellon
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for thunderbird for mfsa2021-36 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three new ckeditor issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] exiv2, ATS DSAs
Moritz Muehlenhoff ( at jmm)
- Processing b87a2459349b0bebcc6789c91f9e3cbdbb31891f failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] fix duplicate reference
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry for CVE-2021-31292
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust source package name for opensysusers package
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Ignore CVE-2021-36740 (varnish) in stretch
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] 3 commits: LTS: take rustc
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: CVE-2020-22019 - update comment on status
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: mark CVE-2020-22017 as not-affected for stretch
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22931/nodejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 6 commits: data/config.json: Update mapping release -> codenames
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track bullseye-pu proposed update for node-tar
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Unify product name
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Add missing CVE for DSA 4957-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some new NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: unmark CVE-2020-22015 as ignored for stretch
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2742-1 for ffmpeg
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38370/alpine
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38371/exim4
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38511/rust-tar
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38597/wolfssl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Fix typo in todo item
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-35936/airflow
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3688 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28589/tinyobjloader
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] three thunderbird issues n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version of CVE-2021-3274{6,7}/icingaweb2 via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for several binutils issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two icinga2 issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Postpone decision on possible apache2 DSA for VE-2021-33193
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] security-team.d.o: Sync table with real situation
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: status update
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] update note in dla-needed
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2743-1 for amd64-microcode
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry for amd64-microcode as it got update via DLA 2743-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38711/gitit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2744-1 for usermode
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-25673/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2745-1 for thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25955/dolibarr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Three wireshark issues fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38155/keystone fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-36221/golang-1.15
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two new linux (KVM) issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-32809/ckeditor: precise versions
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-32808/ckeditor: precise versions
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-21391/ckeditor: stretch not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Update status for buster for CVE-2021-32808/ckeditor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for linux (KVM) issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for ckeditor issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3654/nova
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove jetty9 from dsa-needed list, got already an update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38711/gitit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3621/sssd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2016-10345/passenger via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] claim qt4-x11
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37608 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Three ckeditor issues fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark two CVEs in qt4-x11 as not affected
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Update notes on mosquitto and mupdf
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add haproxy to dsa-needed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for haproxy issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-35368/modsecurity-crs: reference commits
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-24742
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add related commits for CVE-2020-24741
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA nubmer for haproxy
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-3682/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-24742: add version tags
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-3621/sssd: reference patch and affected versions
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add initial tracking for CVE-2021-38598
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Updat information for CVE-2020-24742 specifically for qt4-x11
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-38598/neutron
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVEs for haproxy assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2595{6,7}/dolibarr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38385/tor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39247/zint
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-29991/firefox
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-3622/hivex via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25218/bind9
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-39242/haproxy as not-affected for stretch
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-39241/haproxy as not-affected for stretch
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-39240/haproxy as not-affected for stretch
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] zint no-dsa
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add todo item for CVE-2021-39247/zint
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add apache2 to dla-needed
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38593/qt: precise versions
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] LTS: claim apache2
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-36773,ublock-origin: Fixed in unstable
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] new liblivemedia issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37714/jsoup
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25263/clickhouse
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3713/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3716/nbdkit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3717/wildfly
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] haproxy issues fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update references for firmware part of CVE-2020-2458{6,7,8}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2021-33054/sogo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new ansible-runner issue, one n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new chromium issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Four libslirp issues fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-21676/fig2dev: precise versions
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] keystone, nova, e2dk spus
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-3716/nbdkit fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add epoch for keystone version
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add epoch for version of nova bulleye-pu update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync edk2 version for bullseye-pu update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update reference for CVE-2021-39282/liblivemedia
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37698/icinga2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Cleanup some trailing whitespaces
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-22345
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new gpac issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Citadel NO STARTTLS issues
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Try to link to a fixed reference for citadel posts
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust reference for CVE-2021-32438/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update CVE-2021-21856/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fix for CVE-2021-21852 in stss box
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] gpac n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-18897/libpff
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-3702/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22942/rails
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-22942/rails
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-37714/jsoup
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18899/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18898/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add gitit to dla-needed
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-29425/commons-io as no-dsa for buster
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] zint confirmed n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixes via experimental for firmware-nonfree issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-36769/telegram-desktop fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: fix for CVE-2021-29376 postponed until now
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37750/krb5
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed postgresql-13 update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3677/postgresql* as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note on CVE-2021-20204/libgetdata
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim gitit.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-38711 in gitit for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for rust-sized-chunks via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for chromium
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for commons-io via buster-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-35197/mediawiki
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] gen-D[LS]A: Replace use of which with command -v
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38185/cpio: reference new regression
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] dla: take krb5
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Track fix for CVE-2021-33574/glibc via experimental
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-24741
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track additional regression fix for cpio update in unstble
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Associate source package for CVE-2021-38171
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2018-10873 has been already fixed in Stretch by upload of 0.33-3.3+deb9u1
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2747-1 for ircii
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] fix for CVE-2021-29376 in ircii postponed until now
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-32798/jupyter-notebook
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-32798 as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-34335/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-34334/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-32815/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3621/sssd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3713/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3638/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-20450/ffmpeg fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2742-2 for ffmpeg
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Two nextcloud-desktop issues fixed in unstable upload with new upstream version
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39361/evolution-rss
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39360/libzapojit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39359/libgda5
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39358/gfbgraph
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3703 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39371/pywps
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39365/grilo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three new ledgersmb issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove passenger from list of globally removed packages
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2018-1000101/mingw-w64
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-35940/apr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-35940/apr as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2021-22939 as eol for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] mark CVE-2021-38185 as no-dsa for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-35940/apr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-18849 will be fixed by next upload
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2748-1 for tnef
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA for tor update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information of CVE-2018-1000101/mingw-w64
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new mbedtls issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-38185/cpio as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] ledgersmb DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-2372 and CVE-2021-2389 as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark ckeditor issues as no-dsa (for buster and bullseye)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark opensysusers as no-dsa for bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process one specific IBM NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new libxstream-java issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] More refs for MediaWiki Score/LilyPond/firejail vulnerabilities
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3732/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-35940/apr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for apr via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed modsecurity-crs update via buster-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-371{1,2}/openssl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-35368/modsecurity-crs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2021-371{1,2}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add needed commit to list for CVE-2021-3712
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Expand list of commits with two more for CVE-2021-3711 and CVE-2021-3712
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openssl update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-3587 rejected in favour of CVE-2021-38208
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-28430
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add some new gitlab CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18774/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18773/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18771/exiv2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Fixes for CVEs in firmware-nonfree moved to unstable from experimental
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note for asterisk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove two no-dsa items for nextcloud-desktop issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36690/sqlite3
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38714/plib
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-40084/opensysusers assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-40083/knot-resolver
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark not-resolver as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-371{1,2} via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track some new envoyproxy issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 6 commits: take openssl
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add new xen issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] mark CVE-2021-36690 as not-affected for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Track fixes via unstable for CVE-2020-2426{5,6}/tcpreplay
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-36690/sqlite3
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Three qemu issues fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-39365/grilo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-38714/plib
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18976/tcpreplay
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3735/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3739/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add proposed update for modsecurity-crs via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed updates for sabnzbdplus via {bullseye,buster}-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3634/libssh
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream commit for CVE-2021-3634/libssh
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2021-38370 as postponed for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-40145/libgd2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add some Movable Type related CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-18974/nasm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-1897{1,2}/libpodofo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-38559/hoteldruid
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3634/libssh
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] grilo DSA-4964-1
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2021-37576 with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-40083/knot-resolver via experimental
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new python issue (CVE-2021-3737)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39272/fetchmail
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2717-2 for redis
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Claim qemu in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Postpone apache2 DLA for CVE-2021-33193.
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-37750/krb5
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] follow sec team with marking CVE-2021-40145 as no-dsa
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Update release date for grilo DSA
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-40153/squashfs-tools
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] shiro fixed in sidx
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] add xen to dsa-needed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] sqlite non issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new rust-crossbeam-deque issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-32810
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for shiro via bulleye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed shiro update via buster-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-40153/squashfs-tools
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-32796/node-xmldom via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-33587/node-css-what via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-32810/rust-crossbeam-deque via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-39272/fetchmail as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-39272/fetchmail
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-23226/cacti
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: also take openssl1.0
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] mark CVE-2021-38614 as ignored for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] libssh fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-20291 via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2021-36584 as no-dsa
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for ublock-origin via {buster,bullseye}-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Stretch will be fixed
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-32686 is a no-dsa, backported patch link added
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Add smart3 to dla-needed.txt to track reported regression
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for four openexr issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: add cacti
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] LTS: claim cacti
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Add libssh to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-33880/python-websockets
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: take wireshark
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] dla: really take wireshark
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] 8 commits: mark CVE-2021-39272 as no-dsa for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2020-18976 as unfixed and unimportant for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2021-32740 as no-dsa for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-31811,CVE-2021-31812,libpdfbox2-java: Fixed in unstable
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Take qtbase-opensource-src and add notes
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2750-1 for exiv2
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2020-18976/tcpreplay as no-dsa for stretch
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries which got an update for exiv2 in stretch
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] DLA 2750-1: Remove listing of CVE-2021-31291
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3743/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3698/cockpit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Assign sssd to Anton on his request
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Update details on old rust-base64 issue
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Merge duplicate rust-hyper issues
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Update affected information for CVE-2017-1000430
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: status update, unclaim firmware-nonfree
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] take libssh
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] krb5/gthumb spu/ospu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: Take rustc, status update
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add new ntfs-3g issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-36370/mc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim pywps
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3713/qemu via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed golang-1.15 update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3748/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-40330/git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38593/qt vulnerable code introduced later
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2021-34434/mosquitto
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-34434/mosquitto - only affects version 2 and later
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add NFUs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Update CVEs for cachet
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] wireshark: CVE triaging and no DLA for now
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2751-1 for postgresql-9.6
Christoph Berg ( at myon)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add DSA 4962-2 regression update entry
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: re-add amd64-microcode as update did not build
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Reproduced problems with atomicparsley
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] libssh DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process 2 NFUs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-22222/wireshark: don't clutter with unsupported releases
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2752-1 for squashfs-tools
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-40085/neutron
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-40085/neutron
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-34434/mosquitto
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3748/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39135/npm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-36370/mc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-39135/npm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37701/node-tar
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Typo fix
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-39134/npm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37713/node-tar
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-37712/node-tar
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-39134/npm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3749/node-axios
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two new matrix-synapse issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-22929/brave-browser
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Claim nettle in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] git, mc no-dsa
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] gpac DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3544,CVE-2021-3545,CVE-2021-3546 in Qemu/Stretch as not-affected
Markus Koschany ( at apo)
Last message date:
Tue Aug 31 23:11:15 BST 2021
Archived on: Tue Aug 31 23:11:18 BST 2021
This archive was generated by
Pipermail 0.09 (Mailman edition).