February 2022 Archives by thread
Starting: Tue Feb 1 02:30:50 GMT 2022
Ending: Mon Feb 28 09:59:48 GMT 2022
Messages: 782
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Jeremiah C. Foster ( at jeremiah)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-22594: Replace brackets for temporary description
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0433/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0175/virglrenderer
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0135/virglrenderer
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-34337/mailman3
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46669/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46668/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46667/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46666/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46665/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46664/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46663/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46662/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46661/mariadb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-1986{0,1}/ldns
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note for ruby2.{5,7} in dsa-needed
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 3 commits: remove-cve-dist-tags: remove empty CVE entries
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Tentatively take samba from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add expat to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-22818/python-django
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23833/python-django
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for python-django issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage python-django for stretch LTS (CVE-2022-22818 &...
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2906-1 for python-django.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2907-1 for apache2
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2022-24130/xterm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for python-django issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2022-24130/xterm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Ignore CVE-2021-44141 for buster and bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-24300 assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-24301 assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop one previously added minetest temporary entry
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Expand notes for CVE-2022-24300
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4218/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3859/undertow
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] buster/bullseye triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new nvidia issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 4 commits: CVE-2022-23304,wpa: Mark as ignored for Stretch
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-26247/cacti: reference prior fix
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-3816/cacti: stretch not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] pip 22 adds two vendored libs
Stefano Rivera ( at stefanor)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-0318
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: add xterm
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Take xterm
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Update CVE-2020-17495 and mark it unimportant and add NOTE
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2022-22122 (duplicate of CVE-2021-37866)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0417/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-0358/qemu: stretch not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add references to ZDI advisories for CVE-2021-44142
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for nvidia-graphics-drivers-tesla-450 via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for @@ -16509,6 +16509,8 @@ CVE-2021-43518/teeworlds
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0355 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for e2guardian via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0443/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-2352{0,1}/juce fixed in unstable
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Ajust one reference for CVE-2021-23520
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Don't mark unfixed status in lower suites
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0419/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two slic3r CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Fix typo earlier commited for CVE-2022-22942 note
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 9 commits: grab-cve-in-fix #1001451
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker] Deleted branch grabcvefix
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-43848/h2o not-affected new code not yet released
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2908-1 librecad
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim spip in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Remove spip from dla-needed.txt because there are no open issues.
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim apng2gif in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-21653/jawn <not-affected> Vulnerable code not uploaded
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-21668/pipenv <not-affected> Vulnerable code not uploaded
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] dla: add nvidia-graphics-drivers
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-2168{0,1}/node-marked fixed in unstable
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-21704/node-log4js fixed in unstable
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-21708/golang-github-graph-gophers-graphql-go fixed in unstable
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-33966/spotweb: stretch postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] dla: add ldns
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] dla: add strongswan
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add additional GHSA reference for CVE-2021-43848
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-21668
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: add minetest
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim ldns.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] dla: add connman
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Take strongswan
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2909-1 for strongswan
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] google-compute-image-packages removed from the archive
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] ruby DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add reference to patch submission for CVE-2022-2309{6,7,8}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-34337/mailman3
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commits for CVE-2022-2309{6,7,8}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for connman issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: take connman
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update two 404ing commit links; git.nlnetlabs.nl moved to github.com/NLnetLabs
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2910-1 for ldns.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] add NOTE about commit to fix CVE-2020-7711
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3894/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0487/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-7711
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for nvidia-graphics-drivers via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-2172{2,3}/pjproject
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add several entries for tensorflow, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] libtpms fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2022-0329 which was wrongly assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] nvidia-graphics-drivers-tesla-470 fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] associate CVE-2018-1279 also with rabbitmq and track spu upload
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-23131/zabbix: stretch not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Group entries for easier tracking/overview
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2021-20001/debian-edu-config
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-1279
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] bullseyre/buster triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] libde265 bug
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-23133/zabbix: stretch not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa tags for upcoming apng2gif update
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 5 commits: Reclaim firmware-nonfree in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] LTS: take gif2apng
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-21680,CVE-2022-21681/node-marked: stretch end-of-life
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] dla: add debian-edu-config
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1279/rabbitmq-server: stretch postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add tempoarary entry for atftp issue, #1004974
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Cleanup traling whitespaces in CVE list file
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-34337/mailman3 as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-46671/atftp assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23607/python-treq
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two new zammad issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Unify naming for taocms NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Take debian-edu-config
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for chromium via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update CVE-2021-3803/node-nth-check
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-33623/node-trim-newlines
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track proposed buster and bullseye updates for atftp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0492/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-23607
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-22570/protobuf: stretch postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-0391/python3.5: stretch postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-21704/node-log4js, CVE-2021-3803/node-nth-check,...
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-45100
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-0492/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add note for debian-edu-config
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2912-1 for libphp-adodb
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Track upstream commit for CVE-2022-23990
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for upstream commits for CVE-2022-23852
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for commit for CVE-2022-2282{2,3,4,5,6,7}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2021-46143
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2021-45960
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: status update
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-2330{3,4}/wpa as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2021-29499/golang-github-sylabs-sif
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0284/imagemagick
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for lua5.4 issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: update notes
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update todo item for CVE-2021-45958/ujson
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2913-1 for xterm
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-45958/ujson
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-28213
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-45958/ujson
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process several tensorflow CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24448/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Re-claim libgit2
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0481/mruby
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24249/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4043/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream reference for CVE-2021-4043/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark gif2apng as removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] mariadb-10.5 removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] chromium DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-43859/libxstream-java
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23613/xrdp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: take firefox-esr and thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-23613/xrdp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2914-1 for zabbix
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Ignore CVE-2022-21682 and CVE-2021-43860 for flatpak in stretch
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-23959/varnish: reference test case
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add extra commit for CVE-2020-19860.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2022-21658 in rustc for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr issues from mfsa2022-05
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add firefox issues from mfsa2022-04
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-33120
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23614/php-twig
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0139/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-45429/yara
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4532{5,6,7,8}/gitea
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-21712/twisted
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for firefox via unstable for mfsa2022-04
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for firefox-esr via unstable for mfsa2022-05 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0480/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2022-0480/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0485/libnbd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-05{29,30}/unzip
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2915-1 for connman
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] gen-DSA: don't set extracvefile to "null"
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update notes for nvidia-graphics-drivers in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2017-0371: add one reference which explicitly refers to the CVE
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update for two intel-microcode entries
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23853/{kate,ktexteditor}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track embedded copy of unocode-data in boost1.74
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Triage CVE-2022-0240 & CVE-2022-0481 in mruby for stretch LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] firefox-esr DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2022-0002
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2916-1 for firefox-esr
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-16301/tcpdump
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Demote severity of CVE-2018-16301 to unimportant
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0525/mruby
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add four new radare2 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-453{29,30,31}/gitea
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add four more MariaDB CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: add twisted
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] CVE-2018-16301: Reference commit for 4.9 branch
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed fixes for xterm via {buster,bullseye}-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2917-1 for openjdk-8
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] dla: claim twisted
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0435/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] allocate DSA for cryptsetup
Yves-Alexis Perez ( at corsac)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Adjust suite for fix in DSA 5070-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2022-23408/wolfssl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references to upstream commits for CVE-2022-23408/wolfssl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for exiv2 issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0516/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-40874/lemonldap-ng
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update upstream references for CVE-2022-0485/libnbd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-23613/xrdp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-0485/libnbd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2021-4091 as not-affected for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-0145/intel-microcode
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove association of CVE-2022-21291 to openjdk-8
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] lts: take pgbouncer
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] lts: add note on pgbouncer
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] CVE-2018-1143{2-8}/libmobi tested in sid
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Process 2 NFUs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-26208/jhead 1:3.04-2 (bug #953352)
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Mark libmobi issues as not affected according to the triage
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust tracking for fixed versison of CVE-2020-26208/jhead
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24959/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2022-24958/linux triage with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process a few NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2022-0538/jenkins
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0554/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for samba update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Resolve CVE-2021-3284{0-2}/mono not-affected - vulnerable code not yet uploaded
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-3284{0-2}/mono add extra note
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Process NFUs for Cisco Small Business RV Series Routers
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for golang CVE-2022-23806 CVE-2022-23772 CVE-2022-23773 via unstable
Shengjing Zhu ( at zhsj)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2021-0145
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reassign the WSA entries to the CVE's from 2022
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] various spus
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] debian-edu-config DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track proposed updates for golang-1.15 via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark golang-1.15 and golang-1.11 issues as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2022-0516/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-45402/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24975/git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2022-24111/mahara
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4538{6,7}/tcpreplay
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2918-1 for debian-edu-config
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2022-0562/tiff
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-0485/libnbd via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23633/rails
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2021-45387 and CVE-2021-45386 as no-dsa for Stretch
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for wireshark issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-44879/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three new grafana issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Assign webkit2gtk and wpewebkit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add thunderbird to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track thunderbird issues from mfsa2022-06
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for thunderbird issues addressed in mfsa2022-06
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23634/puma
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: ignore CVE-2020-8492 for stretch
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0536/node-follow-redirects
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track as well update including fix for CVE-2022-0536 for node-follow-redirects
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2919-1 for python2.7
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for expat update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2022-24051/MariaDB
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two phpmyadmin issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-23634/puma
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-23633/rails
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-23221 and CVE-2021-42392,h2database as fixed in unstable
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-23463: Remove todo and add additional commit notes
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add zsh and assign
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-056{1,2}/tiff fixed version in unstable
László Böszörményi ( at gcs)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-049{6,7}/openscad
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync CVE-2021-3894 for now with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24976/atheme-services
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Sync up classification for atheme-services
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two openscad issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove prosody from dsa-needed list, the regression update has happened as DSA-5047-2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0570/mruby
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0508/peertube
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23707/kibana
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two gerbv issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0572/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2920-1 for varnish
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5075-1 for minetest
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 9 commits: add zsh
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add followup for CVE-2022-22817
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2921-1 for thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Process some Drupal 8 / module NFUs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Claim h2database in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] rebar3 is now in the archive
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-39892,39939,39943/gitlab - add notes
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] rebar3 - fixed before initial upload
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-45260/gpac - 1 CVE reported twice upstream.
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-41265/flask-appbuilder <itp>
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Update other Flask-AppBuilder CVEs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-23630/gradle not-affected, vulerable code not yet uploaded
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-46088/zabbix <undetermined> - closed as a feature upstream
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] lts: take zsh
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-45844/freecad unfixed #1005747
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2922-1 for pgbouncer
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] apache-log4j1.2 spu/opsu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] apache-log4j2 spu/opsu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-42392,h2database: Link to fixing commit
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-23221,h2database: Link to fixing commit
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2021-4115/policykit-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update entry for CVE-2021-39939
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fix in experimental for CVE-2021-39892
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference to GHSA for CVE-2021-41265
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add GHSA advisory reference for CVE-2022-21659
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add GHSA reference for CVE-2021-32805
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust upstream tag for CVE-2021-32805 commit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference GHSA advisory for CVE-2021-29621
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust upstream tag information for CVE-2021-29621
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update upstream information on CVE-2022-23630
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync version for apache-log4j1.2 proposed in buster-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync apache-log4j2 version with bullseye-pu proposed version
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0571
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new set of chromium issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0563/util-linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-4115/policykit-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim libxstream-java.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2923-1 for h2database
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add h2database to dsa-needed.txt and claim it.
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0543/redis
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new entry to embedded-code-copies
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-4115
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0586/wireshark
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0583/wireshark
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0582/wireshark
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0581/wireshark
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24686/nomad
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-45845/freecad
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] gerbv updates
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker] Pushed new branch updatedocs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] add and take redis in dsa-needed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5076-1 h2database
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25939/arangodb as <itp>
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Allow merge-cve-files to let RESERVED through
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-32036/mongodb <removed>
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim gpac
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] atheme-services fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] one qemu issue n/a for buster
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] librecad DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reference upcoming TALOS advisories for gerbv issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Re-associate four CVEs with pluxml
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update note for CVE-2022-0563/util-linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three new pluxml issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2012-4427/gnome-shell
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2924-1 for libxstream-java
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-21698/golang-github-prometheus-client-golang
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] chromium issues fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24684/nomad
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-45005/mujs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0617/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-0617/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0585/wireshark
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3700/usbredir
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3596/imagemagick
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-44960/svgpp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][updatedocs] Update for review comments
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-2523{5,6}/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] node-sanitize-html now in the archive
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Take expat from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Mark rpyc as not affected by CVE-2019-16328
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5078-1 for zsh
Sebastien Delafond ( at seb)
- [Git][security-tracker-team/security-tracker][master] Claim drupal7 in dla-needed.txt
Gunnar Wolf ( at gwolf)
- [Git][security-tracker-team/security-tracker][master] Add tempoary entry for SA-CORE-2022-003 issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2022-0487/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2022-0487
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2925-1 for drupal7
Gunnar Wolf ( at gwolf)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track fixed version in stretch for drupal7 for SA-CORE-2022-003
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2021-3648 (duplicate of CVE-2021-3530)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0559/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note for expat in dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-240{48,50,51,52}/mariadb: Add ZDI references
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2022-25235/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] mbedtls fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0646/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0644/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][updatedocs] 70 commits: Add CVE-2021-45845/freecad
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-25271/drupal7 assigned for SA-CORE-2022-033
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25265/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25258/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24953/php-crypt-gpg
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] php-crypt-gpg fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-24953/php-crypt-gpg
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new libpgjava issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lemonldap-ng fixed in experimental
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] unzip issues clarified
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new node-url-parse issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0566/thunderbird
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add thunderbird to dsa-needed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for golang-1.18 CVE-2022-23806 CVE-2022-23773 via unstable
Shengjing Zhu ( at zhsj)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for libpgjava issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-21724/libpgjava
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-0512/node-url-parse
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-21712/twisted via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2022-0003
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][updatedocs] 2 commits: doc/s/security_tracker: Add missing '-' between suite and source name
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 6 commits: Extend tracker documentation
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker] Deleted branch updatedocs
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4473{0,1}/snapd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: take thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4120/snapd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-21708/php
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add snapd to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add php7.4 to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for linux issues via 5.16.10-1 upload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25255/Qt
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0639/node-url-parse
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24683/nomad
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-2331{8,9}/pcf2bdf
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-44537/owncloud-client
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add notes for two CVEs from INTEL-SA-00604
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two CVEs for INTEL-SA-00571
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-4115: Add reference for GHSL-2021-077
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3155/snapd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-2531{3,4,5}/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2926-1 for zsh
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add oss-security reference for CVE-2021-4120/snapd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Checked multiple CVEs in pjproject against asterisk and ring
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Track for now policykit-1 fix via experimental
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update CVE-2022-21723/asterisk - affected code present in tarball in debian directory.
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] glibc spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-45346/sqlite3 bug #1005974
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Drop access.redhat.com reference covered already by the bugzilla entry
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] PHP, Redis, snapd DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-0543
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-4120/snapd as well in bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2022-25315/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference to upstream commit for CVE-2022-25314/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2022-25313/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2022-25236/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commits for CVE-2022-25235/expat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-24953/php-crypt-gpg as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update commit reference for CVE-2016-1239/duck
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] kvmtool hypervisor escape and host code execution
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-4115/policykit-1 via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixes via unstable for three brandy issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for expat issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track experimental fixes for singularity-container
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2021-4115/policykit-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2927-1 for twisted
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-0566/thunderbird via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-5083-1 and wpewebkit DSA-5084-1
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-46700/libsixel
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-45082/cobbler
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync CVE list for mariadb-10.5 for bullseye-pu update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync proposed update for mariadb-10.3 via buster-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] xen fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] mariadb 10.6 fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-46659 in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] MariaDB: Annotate upstream version fixing several CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0629/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add initial notes for CVE-2016-20013
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track for now several of the INTEL-SA-00539 issues for firmware-nonfree
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0686/node-url-parse
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0685/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4508{1,3}/cobbler
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0500/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Process NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-23647/node-prismjs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25375/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23645/swtpm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-0177 for INTEL-SA-00539
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note for libgit2
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] LTS: update status, take debian-archive-keyring
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: remove empty line
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: add expat
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: update notes
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] lts: take expat and freecad
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-3746/libtpms
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-45845/freecad n/a in stretch
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2021-33622/singularity-container
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-0686/node-url-parse via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-2331{8,9}/pcf2bdf
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0691/node-url-parse
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25636/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three mruby issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-25255/Qt
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track two issues in geckodriver, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track upstream commit for CVE-2021-4115/policykit-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-25375: Add oss-security reference
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-44568/libsolv
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Clarify note for CVE-2021-44568
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0696/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new libsolv issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for some libsolv issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for various libsolv issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add asterisk and ring, assign to Abhijith
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: add mariadb-10.1
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: Add minor note into dla-needed.
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0712/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0676/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24599/audiofile
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] swtpm fixed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-4120/snapd as no-ds for buster
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed bullseye-pu update for php-crypt-gpg
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-45464/kvmtool
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new envoy issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add unfixed php-horde-mime-viewer XSS issue
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] cyrus-sasl2 2.1.28 CVE fixes
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2022-24407
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Split out temproary entry for incomplete fix for CVE-2019-19906
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Turn Android external flac NFU into flac issue
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-054{4,5,6}/blender
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-25636/libreoffice
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25643/seatd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference for followup to CVE-2019-19906
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-25643
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0714/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0713/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0717/mruby
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-2456{4,5}/check-mk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23608/pjproject
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-44967/limesurvey
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-25643/seatd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-0708/mattermost-server <itp>
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-2380{3,4}/kicad 6.0.2+dfsg-1
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-2394{6,7}/kicad 6.0.2+dfsg-1
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-22901/iotjs <not-affected> (Vulnerable code introduced later)
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-23608/asterisk <unfixed>
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] disassociate one microcode issue from intel-microcode
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-25299/phantomjs <removed>, stretch not affected
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Fix up CVE-2022-25299 reference
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] Fix up CVE-2022-25299 reference, part 2
Neil Williams ( at codehelp)
- [Git][security-tracker-team/security-tracker][master] snapd fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0731/dolibarr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0729/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-072{6,7}/peertube
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24620/piwigo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24566/check-mk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0476/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2021-0561
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2022-2380{3,4}/kicad
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add commit references for CVE-2022-2394{6,7}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] libapache2-mod-auth-openidc, node-prismjs spus
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track singularity-container fixes now landed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update versions for the node-prismjs and libapache2-mod-auth-openidc updates
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop tempoary entry for cyrus-sasl2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track fix via experimental for CVE-2022-24407/cyrus-sasl2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add cyrus-sasl2 to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0725/keepass2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-0500 in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-25058/usbguard
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-256{39,40}/wolfssl
Salvatore Bonaccorso ( at carnil)
- Polycom VVX 400 - 26 Feb URGENT!
Adrian Brown
- [Git][security-tracker-team/security-tracker][master] airflow
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-40874/lemonldap-ng via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for lemonldap-ng via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-2532{6,7,8}/fscrypt
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop notes from CVE-2021-38892 (was withdrawn by its CNA as it was not a security issue)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0695/radare2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24615/zip4j
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] BlueMirror mesh provisioning issues are in bluez not linux
Ben Hutchings ( at benh)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for three bluez issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync CVEs with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3155 as no-dsa
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process various NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24687/consul
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-202-2461{3,4}/libmetadata-extractor-java
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] php-illuminate-database, lemonldap ospus
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-24947
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-24948
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-24986: KCron: Insecure temporary file handling
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] add details for kcron
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: add cyrus-sasl
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: fix cyrus-sasl2 package name
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] intel-microcode fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Remove unstable entry for CVE-2021-21263 for next oldstable point release
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] gpac security fixes in experimental
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] more gpac security fixes in experimental
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] update note
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-25636/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-0746/dolibarr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-45005/mujs via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] more gpac fixes in experimental
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new rust-crossbeam issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2022-24407/cyrus-sasl2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for cyrus-sasl2 update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] gpac fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36516/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23308/libxml2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-21706/zulip-server, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for fscrypt issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-23308/consul
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-23308/libxml2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2022-24303/pillow via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-2928-1 for htmldoc
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] pcf2bdf, connman fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add upstream tag information for pcf2bdf commits
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed htmldoc update via buster-pu upload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add link to fix in CVE-2021-45958
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] take cyrus-sasl2
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Update entry for CVE-2022-23639
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new gitlab issues from 2022-02-25 release
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-23853/kate via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process three NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-3967/zulip-server
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add kcron
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: add wireshark
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: take vim
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track fixed version for CVE-2022-23308/libxml2 via unstable
Salvatore Bonaccorso ( at carnil)
Last message date:
Mon Feb 28 09:59:48 GMT 2022
Archived on: Mon Feb 28 09:59:52 GMT 2022
This archive was generated by
Pipermail 0.09 (Mailman edition).