February 2021 Archives by date
Starting: Mon Feb 1 04:24:24 GMT 2021
Ending: Sun Feb 28 20:55:08 GMT 2021
Messages: 766
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove prefixed whitespaces
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for linux update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark remaining issues of f2fs-tools as no-dsa. Follow carnil's
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] 2 commits: dla: wireshark will be released on 6.2.2021
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2217{3,4}/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20203/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20199/libpod
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3348/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Leave opendmarc until remaining issues progress, take python-pysaml2
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage python-django for stretch LTS (CVE-2021-3281).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add bug for CVE-2021-3281.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add upstream commit references for CVE-2021-3281
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2021-3281/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: claim shiro in dla-needed.txt
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2539-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2540-1 for python-django
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-21241/flask-security
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3283/nomad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21287/minio
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26272/electron
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2020-29443
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20181/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2020-24027/liblivemedia as no-dsa for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Fix typo in version string
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] libcroco removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2019-8075 is specific to Adobe Flash
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-6558 is ios specific
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] Mark spotweb as removed from the archive in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] liblivemedia removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: python3.8 removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update tracking of llvm-toolchain packages
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] openjdk-13 and openjdk-14 removed from the archive everywhere
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2021{6,7}/privoxy
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20182 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-17523/shiro
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-35310
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] privoxy no-dsa
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update release date for DLA-2539-1
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2541-1 for thunderbird
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2542-1 for tzdata
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2543-1 for libdatetime-timezone-perl
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4844-1 for dnsmasq
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] awstats fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] lts: reclaim ceph
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] qemu/CVE-2019-12067: rechecked, no news
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-2501{7,8}/krb5-appl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2128{4,5}/docker.io
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28493/jinja2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-10001/cups
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-10001/cups: Reference upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add followup entry for php-laravel-framework
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Move ansible to no-dsa state for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3392/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21289/ruby-mechanize
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27637/r-base
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-17516/cassandra
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-26159
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openldap update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2544-1 for openldap
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Take obs
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] merge-cve-files: support replacing main (sid) annotations
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] new privoxy issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFU, concludes external check
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] correct IDs for privoxy issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed versions via unstable for privoxy issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2545-1 for open-build-service
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] pysaml2 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] ruby-mechanize fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-14394/qemu: stretch triage
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-15469/qemu: update
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-9497 and CVE-2020-9498 are fixed in 1.3.0-1
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] wireshark n/a for older suites
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove ignored tagged entry for CVE-2017-2826 in buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track chromium issues fixed with 88.0.4324.146-1
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-2531{1,2}/condor
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-2217{3,4}/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream bug for CVE-2020-35506
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2020-35505
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Claim openjpeg2
Brian May
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27829/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20220/undertow
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new bitcoin issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark some linux issues as <postponed> for buster
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new nim issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-27829/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track experimental fix for CVE-2021-22172/gitlab
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3283/nomad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- Processing a983ab459c5086324125fd4056f784ec057f68b7 failed
security tracker role
- Processing a983ab459c5086324125fd4056f784ec057f68b7 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-25016/doas
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20176/imagemagick
Salvatore Bonaccorso
- Processing bc2c6f5a86daf856b48284bfc80ecd46ab3fcdcf failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20227/sqlite3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20228/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21702/php
Salvatore Bonaccorso
- Processing 3c3c10d28c6e0e011b8a33f3c1b9f038d8079edb failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-3283/nomad
Salvatore Bonaccorso
- Processing b0b9afe2489206d8589ed51a0198be7493dc0d09 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add new issue in AF_VSOCK implementation
Salvatore Bonaccorso
- Processing b340015ccdf3eb5d6e0f6ae4143a658a26b80367 failed
security tracker role
- Processing 314fbd223072bbb674b11a3350c2bfab68c3685b failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] node-tar-fs entered th archive (Issues fixed before initial upload)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commit for CVE-2018-20835
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20221/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Some check of condor.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] CVE-2021-26708/linux assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new wpa issue (no CVE yet)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20226/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20226/linux as not-affected for buster and older
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-17380/qemu: duplicate of CVE-2020-25085
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2546-1 for intel-microcode
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Move packages which are not ready for 10.8 to end of list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-17160 which was rejected (withdrawn by its CNA)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3382/gitea
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new chromium issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add busybox to dla-needed.txt with comments.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20206/golang-github-appc-cni
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add emporary item for glib2.0 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track two CVEs for linux via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Merge updates acked and included in the Debian buster 10.8 point release
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional notes for CVE-2020-25085
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36241/gnome-autoar
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for privoxy via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Two more wireshark CVEs adressed in 10.8
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-35508/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-0326
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-0326/wpa via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20214/privoxy as not-affected for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] new rust-hyper, rust-xcb issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2021-21299/rust-hyper assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] One CVE was missing for the privoxy buster-pu proposal
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2547-1 for wireshark
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2548-1 for privoxy
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add followup commits for CVE-2020-36193
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove entries covered by the DLA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update commit references for privoxy issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2019-13952/gdnsd via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-21702/php7.4 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-21702/php8.0 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take gdisk
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Remove mumble from dla-needed.txt.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Claim xcftools in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3344 and CVE-2021-20198 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2549-1 for gdisk
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36242/python-cryptography
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-20226/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2667{5,6}/connman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Re-claim dnsmasq
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add fixed version for connman via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add and claim zstd
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add back trailing separator
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim xmlbeans in dla-needed.txt, WIP
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] reclaim slirp
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-17380/qemu: reference mitre request
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26843
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add new firejail issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for firejail issue via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] drop three no-dsa to be fixed along
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for connman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-26910/firejail assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-1000224/godot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-10069/godot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2682{5,6}/godot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add connman
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] golang-1.11 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21435/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2550-1 for openjpeg2
Brian May
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20230/stunnel4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-13947/activemq
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-2128{4,5}/docker.io fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-17380/qemu: duplicate rejected by mitre following new RH comments
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27821/qemu: stretch not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2217{3,4}/wireshark
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-2578{7,8,9} were fixed in 20~git20201216.e48beee+dfsg-1
Adrian Bunk
- [Git][security-tracker-team/security-tracker][master] Adjust version for tt-rss which entered unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new libmysofa issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26925/roundcube
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-26925/roundcube
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-7039 will be fixed in slirp/stretch with next upload
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2552-1 for connman
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for firejail update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: add wpa
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-21148/chromium via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2553-1 for xcftools
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4850-1 for libzstd
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] libzstd's #981404 is fixed in buster in 1.3.8+dfsg-3+deb10u
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adjust libzstd version in buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20194/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-20194/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21290/netty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26926/jasper
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26927/jasper
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26937/screen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3403/libytnef
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3404/libytnef
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3405/libebml
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-26937
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] rust-xcb CVEfied
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-28916/qemu: clarify references following merge
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-29129/qemu: stretch not-affected
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-17525/subversion
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-29130/qemu: reference sanctioned patch
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add temporary description for CVE-2020-17525
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27135/xterm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add screen to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add subversion to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new dlt-daemon issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add screen to dla-needed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] new adminer issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new linux/Intel issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] another intel/linux issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] another linux/intel issue, NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35498/openvswitch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2021-20200
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional references for CVE-2020-35572/adminer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-36244/dlt-daemon
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-35498/openvswitch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-3336/wolfssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] add netty
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: add subversion
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-26937/screen via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-35498/openvswitch
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for subversion issue via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-201-27135/xterm adressed upstream
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take firejail
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2021-27135
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2554-1 for firejail
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20188/libpod
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim netty.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new ruby-carrierwave, helm-kubernetes, node-marked issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-27135/xterm
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new postgres issues, older releases still TBD
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] python-cryptography fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add postgresql-11 for CVE-2021-3393
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2555-1 for netty
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] sqlite3 n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add references for postgresql
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-35504/qemu: reference reproducer
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] CVE-2020-15469/qemu: 8/9 patches merged
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Take subversion from dsa-needed
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21305
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21288
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Try to clarify the needing bits for CVE-2021-20230
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20230/stunnel4
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21290/netty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update task for CVE-2021-26707
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28483/golang-github-gin-gonic-gin
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-26299 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adjust mentioning of advisory type to DLA
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21435/otrs2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21311/adminer
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-26117/activemq
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-2682{5,6}/godot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2021-340{3,4}/libytnef
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3405/libebml
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] update fixed version for screen
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new snapd issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: fix date
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-36193/php-pear via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add (not yet public, but know) references for snapd issue CVE-2020-27352
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new node-static-eval, rails issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add report for CVE-2021-22880/rails
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2021-22880/rails
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2021-22881/rails
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 7 commits: mark CVE-2020-10001 as no-dsa for Stretch
Thorsten Alteholz
- Processing cd5817260633af01846666eed9d5d32f15618986 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Adjust suite for entry of CVE-2020-15690
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-28476 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3409 assigned by Red Hat
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim activemq
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2556-1 for unbound1.9
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-20199/libpod
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-20188/libpod
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dla: qemu: update status
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2557-1 for linux-4.19
Ben Hutchings
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for new spip issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-1900{4,5}/autotrace
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21240/python-httplib2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note on netty in dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove TODO from CVE-2021-26959 (now rejected)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: add xterm
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 4 commits: remark CVE-2020-11023 from no-dsa to ignored as non-free is not supported
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Take xterm
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add spip to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim stunnel4.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2019-13952/gdnsd via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for subversion update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2013-20001 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: mysql-5.7 removed from unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark stunnel4 as being not affected by CVE-2021-20231 in stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-13949/thrift
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-1209{4,5}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2558-1 for xterm
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-36241/gnome-autoar as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28493/jinja2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-36241/gnome-autoar
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-21240
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add php7.3 to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove two postponed marked entries for php7.3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE for reel as end-of-life
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27212/openldap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-21306/node-marked
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-340{3,4}/libytnef
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-25019/limesurvey
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26929/php-horde-text-filter
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark stunnel4 as being not affected by CVE-2021-20231 in stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-26929/php-horde-text-filter
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for GHSL-2021-045/glib2.0 issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for rails issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] qemu fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-27212/openldap via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add openldap to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: update for CVE-2021-20199
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add openldap to dla-needed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] 2 commits: add php-horde-text-filter
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-17525 as not-affected for subversion
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2021-21240 as no-dsa for Stretch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] add one more -
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] CVE-2021-21290,netty: Fixed in unstable.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Revert "mark CVE-2020-17525 as not-affected for subversion"
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20237/zeromq3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20236/zeromq3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20235/zeromq3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20234/zeromq3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] more discussion needed
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] Add and claim openvswitch
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] 2 commits: Fix CVE10k problem for CVE with more than 4 numbers
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] lts-cve-triage.py: Setup paths early due to transitive imports in tracker_data.py.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2559-1 for busybox
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Update status of ansible in dla-needed.txt
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] Add note for php-horde-text-filter.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tags for upcoming busybox update in Stretch.
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] new kibana/elastic issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4852-1 for openvswitch
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26720/avahi
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new node-elliptic issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new webkit issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Track fixed versions for CVE-2020-13558
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-27135/xterm as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-27218/glib2.0 assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-27219/glib2.0 assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add webkit2gtk to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-26720 in avahi for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-20237 in zeromq3 for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Adjust reason for no-dsa tag
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-29598
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2020-28476
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-23337/node-lodash
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-24870/libraw
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-28500/node-lodash
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20195
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20238
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20239/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-20239
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20240/gdk-pixbuf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27229/mumble
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-27229/mumble
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-3177 in python3.5 in stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage ruby-mechanize for stretch LTS (CVE-2021-21289).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Claim ruby-mechanize.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2021-20240 in gdk-pixbuf for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage mumble for stretch LTS (CVE-2021-27229).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2020-24870 in libraw in stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] new puppet issue (needs a closer look)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Assign ruby-mechanize to Utkarsh in dla-needed.txt.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4853-1 for spip
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-20240/gdk-pixbuf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] puppet n/a
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add fixing version crossreference until CVEs available
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26932/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26931/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26934/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26933/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26930/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-26934 (XSA-363)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new steghide issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new openssl issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2560-1 for qemu
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] oauth2-proxy ITP
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] dla: claim php-horde-text-filter
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add additional information for CVE-2021-238{39,40,41}/openssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-29600 and CVE-2020-35176 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix source package name for rootlesskit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2561-1 for ruby-mechanize
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] CVE-2021-2384{0,1}/openssl fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove postponed tagged entry for CVE-2019-1551/openssl
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add openssl to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20246/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20245/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20244/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20243/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20241/imagemagick
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20222 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20201/spice
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take openssl from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 9 commits: data/dla-needed.txt: Triage openssl and openssl1.0 for stretch LTS (CVE-2021-23840).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-4854-1
Alberto Garcia
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openssl update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new airflow issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Move one airflow to CVE-2021-26559
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8625/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add bind9 to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] php7.3 DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add upstream commit for CVE-2020-8625/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-8625/bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed awstats update via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add notes for CVE-2020-2450{2,3,4} from INTEL-SA-00462
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-17582/libzip
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2021-20242
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20250/wildfly
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-8625/bind9 fixed in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: data/dla-needed.txt: Triage glib2.0 for stretch LTS (CVE-2021-27218).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] lts: take glib2.0
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2562-1 for mumble
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2563-1 for openssl
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Revert "Triage CVE-2020-15469, CVE-2020-15859, CVE-2020-25084, CVE-2020-28916...
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-1236{2,3,4}
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2564-1 for php-horde-text-filter
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add and claim libzstd
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] dla: claim golang
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for latest zstd issue
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] chromium fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new rust-rand-code issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2565-1 for openssl1.0
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for bind9
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for xterm via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Fix typos in notes
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35501/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some new NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2021-27379/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] mujs entered the archive, recheck some older CVEs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-26929/php-horde-text-filter
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-20367 has a NVD score of 9.1 and has been fixed
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: unrar-free CVE-2017-1412[012] have been fixed in same version in Buster and...
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2021-27379 in xen for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage bind9 for stretch LTS (CVE-2020-8625).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adjust explanation for CVE-2021-27379 as the referenced URL is not accessible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2568-1 for bind9
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Note that python-django is vulnerable to CVE-2021-23336 due to embedded code copy & add bug report.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage python-django for stretch LTS (CVE-2021-23336).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-23336 is not fixed with 1:1.10.7-2+deb9u10 in unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add initial tracking for CVE-2021-3411/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-3411/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new jackson-dataformat-cbor, node-prismjs, python-reportlab issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new yara issue, NFUs (concludes external check)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2569-1 for python-django
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2570-1 for screen
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Track proposed update for ipmitool via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3402/yara
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for CVE-2021-21289 via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] python3.7 spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 4 commits: add note for CVE-2018-17206 in branch-2.6 of openvswitch
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] new u-boot, asterisk issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] chromium dsa
Michael Gilbert
- [Git][security-tracker-team/security-tracker][master] Adjust advisory URL for CVE-2021-26712
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35776/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-26717/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-26713/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2021-26906
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-26906/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-35776/asterisk
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-4859-1 for libzstd
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add links to fixes for Docker CVEs
Felix Geyer
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add workaround entry for libzstd
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2020-28463in python-reportlab for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2572-1 for wpa
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openldap
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2573-1 for libzstd
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add workaround entry for libzstd for stretch
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Track fixes for python2.7 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: Take free slots for frontdesk, preliminarily
Anton Gladky
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2574-1 for openldap
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Take screen from dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for screen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2021-22880 in rails for stretch LTS.
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add pupnp-1.8/libupnp as well for CVE-2020-12695
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3405 as fixed in libebml/1.4.2-1
Sebastian Ramacher
- [Git][security-tracker-team/security-tracker][master] update notes
Thorsten Alteholz
- [Git][security-tracker-team/security-tracker][master] Add docker.io to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add note for CVE-2021-26714
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20256
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20255/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20066/node-jsdom
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-27379
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-27379/xen
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-20228/ansible
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-27211/steghide
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-27138/u-boot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-27097/u-boot
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] buster triage
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] LTS: update notes for xmlbeans
Roberto C. Sánchez
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Holger Levsen
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-24115/botan
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35571/mantis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add two new CVEs for smarty3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: re claim python-pysaml2
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] CVE-2020-16600 no-dsa
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2021-20066
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new node-url-parse, telegram-desktop issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27782,undertow: Fixed in 2.2.4-1
Markus Koschany
- [Git][security-tracker-team/security-tracker][master] CVE-2020-27782: Add upstream commit associated with the upstream issue
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] new three.js issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new gsoap, ruby-twitter-stream issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark CVE-2021-20066 as disputed, thanks yadd
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] mark lucene-solr as fixed in sid, it dropped the server bits and now only...
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20247/isync
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20247/isync
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20247/isync
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-23336/python-django
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3414 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20257/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] asterisk fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] smarty3 fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] add smarty commit references
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16873,CVE-2018-16874,CVE-2018-16875/golang-1.7,golang-1.8: track for...
Sylvain Beucler
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] new nodejs issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add firefox-esr to dla-needed
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add new thunderbird issues from mfsa2021-09
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr issues from mfsa2021-08
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new firefox issues from mfsa2021-07
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] dsa-needed: take some
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Remove notes from now rejected CVE-2021-20242
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3410/libcaca
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3407/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35524/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35523/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2020-35524: Reference directly upstream commit
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage redis for stretch LTS (CVE-2021-21309).
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21309/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2020-5208/ipmitool
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-21309/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream pull request for CVE-2021-21309/redis
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] firefox-esr fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] firefox fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] snapd fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] 2 commits: nodejs, firefox DSAs
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27645/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add information on Debian specific introduction of CVE-2021-27645
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11987/batik
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-11988/xmlgraphics-commons
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVe-2021-27645/glibc
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2020-28599/openscad
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-35521/tiff information
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVe-2020-35522/tiff
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20259/foreman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-20260/foreman
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3406 as NFU
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for xcftools via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36254/dropbear
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2575-1 for firefox-esr
Emilio Pozuelo Monfort
- [Git][security-tracker-team/security-tracker][master] two tiff issues unimportant
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2576-1 for redis
Chris Lamb
- [Git][security-tracker-team/security-tracker][master] python2 spu
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Fix for CVE-2021-21238 introduced a new dependency xmlschema which
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3281/python-django as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for redis via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2577-1 for python-pysaml2
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entry which got an update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-8032 (but openSUSE specific packaging issue)
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Move kibana entry to CVE-2020-26296
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Replace some jenkins specific NFUs to the source package
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim jackson-dataformat-cbor
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3416/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21330/python-aiohttp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2021-21330
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2021-21330/python-aiohttp
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new spa issue with p2p provision discovery processing
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] nodejs fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] thunderbird fixed in sid
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Claim php-pear for LTS.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] new mongo-java-driver issue
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Fix a stash issue.
Ola Lundqvist
- [Git][security-tracker-team/security-tracker][master] no-dsa triage page for the PTS (WIP)
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] doc/triage: minor spelling/typo/punctuation changes
Sebastien Delafond
- [Git][security-tracker-team/security-tracker][master] two non issues
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-29443/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-80{20,21,30}/open-build-service
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track proposed update for python-django via buster-pu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 4 commits: Take adminer
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Add python-aiohttp to dsa-needed list
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track CVE-2021-23336 as well for pypy3
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] bullseye triage
Moritz Muehlenhoff
- Processing 4a54d1ec3d0be884f0c1232511b481afff8de450 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] remove undetermined entries CVE-2018-12438, these were always unclear
Moritz Muehlenhoff
- Processing 7f1f1ee8589dc945dfd7e006258a0d1350758b00 failed
security tracker role
- Processing 7f1f1ee8589dc945dfd7e006258a0d1350758b00 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Correct ordering of suites in CVE-2020-5238 listing
László Böszörményi
- Processing 2008b12e628776ed6dbbc9bc19efaabe9b77c82d failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Remove NFU from ITPed intellij-idea of CVE-2019-10103
László Böszörményi
- [Git][security-tracker-team/security-tracker][master] CVE-2021-27803/wpa assigned
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional reference associated with CVE-2021-3416/qemu
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for python-aiohttp update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-27799/zint
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-27799/zint
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add new salt issues from 25th february advisory
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] s-t.do/tirage: Fis some spelling errors in draft
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 3 commits: s-t.d.o/triage: Hilight postponed and ignored in code style
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for security.debian.org updates
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] s-t.d.o/triage: Add reference for proposed update mechanism
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Three more salt issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-2127{3,4}/matrix-synapse
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-27223/jetty
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2020-35501/linux
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for salt issues
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: tracker_service: display CVE entries using natural sort order [#76]
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] docker DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] Remove one now obsolete TODO item
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-2024{1,4-6}/imagemagick as ignored for stretch; follow buster
Utkarsh Gupta
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-11867/audacity via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-20247/isync
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20206 as no-dsa for buster
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20206
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2020-27843
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-28491 as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27843
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28491
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-29651/python-py via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2020-29651/python-py as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track embedded copies of python-py
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-29509 and track golang-github-russellhaering-gosaml2
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-508{6,7}/xcftools as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3407/mupdf
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2021-3410
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3410
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20201/spice as no-dsa
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20201/spice
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] CVE-2021-20201: order commits
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-20206/golang-github-appc-cni via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2016-10127 as no-dsa for bullseye
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2016-2568 ignored for bullseye
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff
- [Git][security-tracker-team/security-tracker][master] update note
Abhijith PA
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two xen issues via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-23336/python3.9 via unstable
Salvatore Bonaccorso
- [Git][security-tracker-team/security-tracker][master] 2 commits: Triage spip for stretch
Utkarsh Gupta
Last message date:
Sun Feb 28 20:55:08 GMT 2021
Archived on: Sun Feb 28 20:55:12 GMT 2021
This archive was generated by
Pipermail 0.09 (Mailman edition).