February 2023 Archives by thread
Starting: Wed Feb 1 06:46:41 GMT 2023
Ending: Tue Feb 28 23:21:01 GMT 2023
Messages: 792
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0590/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Correct tracking for CVE-2019-13990/libquartz-java
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Added two references for the CVE-2013-2238 issue in freeswitch.
Petter Reinholdtsen ( at pere)
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Documented a few fixed CVEs in vorbis-tools for Wheezy.
Petter Reinholdtsen ( at pere)
- Processing 93b93c5b6bb15ba3ab002b9c5d36c17807b5571d failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Revert "Documented a few fixed CVEs in vorbis-tools for Wheezy."
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-25147 and CVE-2022-24963
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-4382/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23969/python-django
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add bug for python-django/CVE-2023-23969
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2023-0341 in editorconfig-core for buster LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] NFus
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Django fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2019-13990 as no-dsa for bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2022-3560/pesign
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] openjdk-17,cinder,nova,glance DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3306-1 for python-django
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Mark a series of redis vulnerabilities as 'ignored'; they all require an...
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove redis.git reference; canonical repo is https://salsa.debian.org/lamby/pkg-redis.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-47016 as unimportant
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark a series of src:redis CVEs as ignored in both buster and stretch to match bullseye.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0615/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0597/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25012/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: triage CVE-2022-4055/xdg-utils as no-dsa for buster
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new issue in openssh
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference introducing commit for openssh issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add information for CVE-2023-23924
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new symfony issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2023-0001
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage trafficserver for buster LTS (CVE-2022-31779,...
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso ( at carnil)
- Processing 108028de7bf8b44be5970ca10e9f97ed9e2e4658 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] note apr fix
Stefan Fritsch ( at sf)
- Processing 935d50d7078f37a082fafee2fdc3ea868ad22f06 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] CVE-2022-26068/pistache
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for three libde265 issues fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-26068/pistache
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-3715/bash
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-25136/openssh assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25139/glibc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-16884/runc: reference patch and mitigations
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for some sox issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0045/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage webkit2gtk for buster LTS (CVE-2022-42826,...
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim graphite-web.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-25139/glibc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-25147/apr-util via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two CVEs in php-dompdf
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference oss-security post with patches for sox issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 4 commits: lib/debian-releases.mk: Add support for fetching from different archive areas
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0056/haproxy
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0430/thunderbird
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0634/shadow
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-23924
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-067{6,7,8}/phpipam, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0671/froxlor, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for modsecurity-apache via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-2489{4,5}/symfony
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: claim wireshark in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] sox: bump fixed version for previously incomplete fixes
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-0045/linux: reference writeup
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two more php-dompdf CVEs from 2.0.0 upstream release
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] wireshark's CVE-2022-3190 does not affect buster.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25193/harfbuzz
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for various imagemagick issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream tag for CVE-2021-2682{5,6}/godot
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for godot issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for libhtml-stripscripts-perl update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] wireshark's CVE-2022-4344 does not affect buster.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Replace possible fixing commit with one from the wireshark repo.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add possible fixes for CVE-2022-4345 (wireshark)
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add debian bug reference for CVE-2023-25193/harfbuzz
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add missing meta-information
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two mitmproxy issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-47021/opusfile via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Process some NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: Add VCS information into the packages
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] ruby-rails-html-sanitizer fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] puppet-module-puppetlabs-apt fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lts: take webkit2gtk
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] zabbix fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: claim heimdal
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] LTS: add spip to dla-needed.txt
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3307-1 for openjdk-11
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] lts: CVE-2023-23456/upx-ucl no-dsa on buster
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-5340-1 and wpewebkit DSA-5341-1
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] bullseye triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-0414 (wireshark) is not affecting buster.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3308-1 for webkit2gtk
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-23385/flask-security
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0687/glibc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three new CVEs for zammad: CVE-2022-4802{1,2,3}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3309-1 for graphite-web
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] LTS: Add meta-information
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for three fava issues fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-42330/xen via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add p0 reference
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Take haproxy from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Tentatively take apr-util and apr from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] claim xorg-server
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0494/xorg-server
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-20938/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3310-1 for xorg-server
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-0415 (wireshark) is not affecting buster.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23498/grafana
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22603/binutils
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-2260{4,5,6,7,8,9}/binutils
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker] Pushed new branch tryton-sao
Mathias Behrle ( at mbehrle)
- [Git][security-tracker-team/security-tracker] Deleted branch tryton-sao
Mathias Behrle ( at mbehrle)
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Add embedded code copies for tryton-sao.
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new issues in rust crates
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4426{7,8}/imagemagick
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: lts: CVE-2022-24963/apr n/a on buster
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-0494/xorg-server
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-24813/php-dompdf
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] linux n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] xorg-server fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] also track CVE-2023-0494 for xwayland
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] DLA: take apr-util
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for xorg-server update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new openssl issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lts: add haproxy
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add some commit references for openssl issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-46663/less
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-46663/less
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for openssl update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-45442/ruby-sinatra
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for openssl issue via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for three mplayer issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update fixed version information for CVE-2023-0430/thunderbird
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for several ring issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2012-6655/accountsservice via unstable
Salvatore Bonaccorso ( at carnil)
- No subject
KAMPANAT THUMWONG
- [Git][security-tracker-team/security-tracker][master] LTS: Add VCS to apr-util
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-45142 /heimdal
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add oss-security reference for heimdal issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25194/kafka
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issue with unstable upload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track more fixes for ring via unstable upload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: add openssl
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2022-45142/heimdal
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] issue DLA-3311-1 for heimdal CVE-2022-45142
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] record bug number for heimdal CVE-2022-45142
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3312-1 for shim
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] more mplayer issues fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for heimdal update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] openssh fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] graphite-web fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] symfony spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Update notes for sofia-sip
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-38725/syslog-ng
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] one more mplayer issue fixed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] sofia-sip fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new python-cryptography issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] chromium DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Merge temporary RUSTSEC-2023-0004 entry with CVE-2023-22895
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for ncurses via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-23931: Directly refer to commit in repository
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-22452/phpmyadmin
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: Add meta-ifnrormation
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3313-1 for wireshark
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Mark golang-1.18 as removed from everwhere supported
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-24813/php-dompdf
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3314-1 for libsdl2
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-22452/phpmyadmin
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2021-3981/grub2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new sofia-sip issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] glibc update, will likely be disputed/rejected
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new nextcloud-desktop issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new kodi issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: claim trafficserver in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Remove notes from rejected CVE-2023-0634
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0760/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-41862/postgresql
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: release claim on trafficserver in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2023-23559/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-23942/nextcloud-desktop
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] issue DLA-3315-1 for sox
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] sleuthkit non issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] jss fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] record older fixes for puppet modules
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new caddy issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] rust-diesel fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3316-1 for postgresql-11
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] 2 commits: new gpac issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0361/gnutls28
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] libde265 DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for ruby-rack issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from REJECTED CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-23082/kodi
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-23931/python-cryptography
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add tag reference for CVE-2022-28923 for upstream commit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3317-1 for snort
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim haproxy in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-24816/ipython
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-41941/glpi
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-41859/freeradius
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2023-25139
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track icingaweb2 embedding php-dompdf
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2023-0361/gnutls28
Salvatore Bonaccorso ( at carnil)
- 系统退信
Postmaster at 126.com
- [Git][security-tracker-team/security-tracker][master] Add todo item for CVE-2023-24816
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process CVE-2022-1970 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] pspp no longer installs vulnerable tool
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] ipython n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dla: update runc status
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25727/phpmyadmin
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] binwalk fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] node-http-server in the archive now
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lts: take openssl
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] imagemagick DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] add references to latest IM issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: Update VCS and note
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add gnutls28 to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2023-25136
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag reference for CVE-2022-4510 fix
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add discussion references for CVE-2022-44267 and CVE-2022-44268
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new gss-ntlmssp issues: CVE-2023-2556{3,4,5,6,7}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from rejected CVE
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-24580/python-django
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-24580/python-django
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove trailing whitespaces
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] heimdal fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new python-future issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-46663/less via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new gpac issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] add additional reference to IM information leak issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new qt issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] flask-security, crun spus
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2007-0894 fixed since a long time
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25725/haproxy
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for haproxy update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new tiff issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] haproxy fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] gtkpod is not affected by CVE-2021-37232
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3318-1 for haproxy
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-0056,haproxy: Mark Buster as not-affected
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] django, kodi fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] gnutls28 DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-23797
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-24580/python-django
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-27672/xen
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23946 and CVE-2023-22490 in git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add commit references for git issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-27672/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reason for not-affected in CVE-2021-37232/gtkpod
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2022-40899
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust reference for CVE-2023-0795/tiff
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-27672/linux via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new firefox issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process some NFUs from Intel advisories
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new firefox-esr issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add new intel-microcode issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new PHP issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for intel-microcode issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add additional PHP references
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] add further reference for CVE-2022-27672
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new curl issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new golang-golang-x-net issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new golang-golang-x-image issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] NSS fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] nvidia-cuda-toolkit fixed in experimental
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add upstream references for CVE-2023-2391{4,5,6}/curl and update status
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25577/python-werkzeug
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23934/python-werkzeug
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track new golang issues CVE-2022-4172{2,3,4,5}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: take firefox-esr
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk / wpewebkit upstream advisory WSA-2023-0002
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] add commit reference for nss
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] one golang issue is Win-specific
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-3479/nss
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2022-3479/nss in bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2022-4172{3,4,5}/go
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Take nss from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-22490 and CVE-2023-23946
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for php8.2 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for gss-ntlmssp issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for python-werkzeug issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] firefox-esr DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for curl issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4904/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0778/libpod
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2023-0813 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] git fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new containerd issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] bogus gpac report
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3319-1 for firefox-esr
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add two new clamav issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Claim ruby-loofah in dla-needed.txt
Daniel Leidert ( at dleidert)
- [Git][security-tracker-team/security-tracker][master] new gitlab, check-mk issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] gss-ntlmssp fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] wordpress CVE assignments for issues fixed back in 6.0.3
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new rust-webbrowser issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new wheel issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: add golang-github-opencontainers-selinux to dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Build cross-references for issues covered in DSA-5279-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2022-4825{7,8} with eternal-terminal, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two new issues for node-undici
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0475/golang-github-hashicorp-go-getter
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23558/eternal-terminal, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: golang-github-opencontainers-selinux rationale
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Adjust version for containerd in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for imagemagick issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for node-undici issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-5351-1 and wpewebkit DSA-5352-1
Alberto Garcia ( at berto)
- [Git][security-tracker-team/security-tracker][master] Update CVE-2004-0971 with the fix version from #278271
Tianon Gravi ( at tianon)
- [Git][security-tracker-team/security-tracker][master] Put note below source package name
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Correct version tracking for CVE-2004-0971
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fix for node-undici issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3320-1 for webkit2gtk
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] two additional chrome issues fixed last month
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] golang-1.19 fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new nomad issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-19921/runc: reference merged patch
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] add details for c-ares issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] apache-jena fixed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] "new" golang-github-revel-revel issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] golang-github-flynn-noise n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for clamav issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Cleanup additional whitespace in NOTE
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for clamav issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-19921: Directly reference the commit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag reference information for CVE-2022-4904/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2020-36568
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-4904/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23586/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new thunderbird issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add as well CVE-2023-25746 mfsa2023-07 reference
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for nss update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for amanda issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version CVE-2022-4904/c-ares
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for clamav via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-24809/nethack
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-24329/python
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for thunderbird via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3321-1 for gnutls28
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5354-1 for snort
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: add tiff to dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3322-1 for golang-github-opencontainers-selinux
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] thunderbird DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-27672/xen as not-affected as well down to buster
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-27672/xen
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47015/MariaDB
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: add c-ares to dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-22745/tpm2-tss via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed bullseye-pu update for containerd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-25744/thunderbird via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for tiff issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2022-1471,snakeyaml: unimportant
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for various tiff issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-25012/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed c-ares update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 11 commits: LTS: add freeradius to dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Drop tmux from dla-needed
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 11 commits: Triage gpac for Buster as EOL.
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 2 commits: semi-automatic unclaim after 2 weeks of inactivity
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] lts: reclaim thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3324-1 for thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] one emacs issue also affects that one person who still uses xemacs21...
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lts: take clamav
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] 2 commits: DLA: take sofia-sip
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Reclaim apache2
Lee Garrett ( at lgarrett)
- [Git][security-tracker-team/security-tracker][master] claim imagemagick
Holger Levsen ( at holger)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3325-1 for openssl
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim node-url-parse in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3326-1 for isc-dhcp
Bastian Blank ( at waldi)
- [Git][security-tracker-team/security-tracker][master] new epiphany issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3327-1 for nss
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] new resteasy issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new py7zr issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2022-44900/py7zr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] golang-github-labstack-echo n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-19921/runc: possibly not fixed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] dsa-needed.txt: add git and claim it
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-9271
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update fixing information for CVE-2017-9271/libzypp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3328-1 for clamav
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] sox DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim amanda.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim python-django.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim python-cryptography.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3329-1 for python-django
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some new CVEs for check-mk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-40899/python-future
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add git to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-0482 as no-dsa for buster following decision for later release as well.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] LTS: add python3.7 to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4833{7,8,9}/emacs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26242/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26265/backdrop
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26253/glusterfs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26249/knot-resolver
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] bookworm triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] curl fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Revert "claim imagemagick"
Holger Levsen ( at holger)
- [Git][security-tracker-team/security-tracker][master] lts: take git
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] newaflplusplus issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] add notes from el_cubano about imagemagick
Holger Levsen ( at holger)
- [Git][security-tracker-team/security-tracker][master] new iortcw issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new glusterfs issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new libcommons-fileupload-java issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new hdf5 issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] bugnums
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2023-24998
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] "new" chromium issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add fixing commits for CVE-2023-0215/openssl
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2023-20032
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3330-1 for amanda
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] DLA-3330-1 for amanda actaully fixes CVE-2022-37704, not CVE-2022-37703.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] rpm fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dla: claim python-werkzeug
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3331-1 for python-cryptography
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3332-1 for apr-util
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] dla: take python3.7
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Remove two end-of-life markers for versions fixed in the release
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23009/libreswan
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2022-0934/dnsmasq
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-0934/dnsmasq
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 5 commits: Process some NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3333-1 for tiff
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] LTS: add tiff to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Claim asterisk in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0644/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-32142/libraw
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-32850/jquery-minicolors
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track upstream commit for epiphany-browser in 43.1 release
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2023-0778/libpod
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26314/mono
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process one Wordpress plugin as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: take mariadb-10.3
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2023-0662/php
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add PHP commit references
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add comment on CVE-2019-17567 (apache2)
Lee Garrett ( at lgarrett)
- [Git][security-tracker-team/security-tracker][master] epiphany fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Claim samba in dla-needed.txt
Lee Garrett ( at lgarrett)
- [Git][security-tracker-team/security-tracker][master] Reference additional followup for CVE-2022-37704/amanda
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] disassociate CVE-2021-43172 from two source packages.
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-24998 as no-dsa in buster.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Update status for multipath-tools
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-45939 as no-dsa in buster even though emacs package has been fixed....
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-47517 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes for CVE-2020-36643
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-32850/jquery-minicolors
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2021-32142/libraw
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-47516
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add binwalk to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-47516/sofia-sip
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-23627/ruby-sanitize via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-48340/glustefs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-4833{7,8,9}/emacs via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-23009/libreswan via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3334-1 for sofia-sip
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] lts: take binwalk
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-39244,CVE-2022-39269, Asterisk: Bullseye is affected
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-32142 as no-dsa in buster following bullseye decision.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Claim openimageio in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3336-1 for node-url-parse
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] LTS: claim nodejs in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5357-1 for git
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-24998/libcommons-fileupload-java via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark axtls as removed from stable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add php7.4 to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Correct CVE association for qemu issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-38779/kibana
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3337-1 for mariadb-10.3
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] update dsa-needed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Process more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5358-1 for asterisk
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] track fixed CVE for tiff
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] dsa-needed.txt: claim frr
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Move listing of CVE-2022-3970, CVE-2022-3626 and CVE-2022-3598 to DSA-5333-1 entry
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Claim freeradius in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-23009/libreswan
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add additional emacs references
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3338-1 for git
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3339-1 for binwalk
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2022-43548
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25579/nextcloud-server
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reassociate two NFUs with itp'ed source
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23039/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2014-125064, withdrawn as no security issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3340-1 for libgit2
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Drop notes for CVE-2021-4243
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23918/nodejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23919/nodejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23920/nodejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for CVE-2023-239{18,19,20}/nodejs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22476/mantis
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug references for nodejs issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add emacs to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] lts: take mono
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3219/gnupg2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-22742 as no-dsa also in buster.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-12278 and CVE-2020-12279 as not important to fix since it only occurs...
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2021-46023 as no-dsa following decision for bullseye.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] chromium, emacs DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-48340 and CVE-2023-26253 for glusterfs as no-dsa following decision for bullseye.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] NFUs (unrelated to ITPd airflow)
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4492/undertow
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25927/node-ua-parser-js
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] tiff DSA
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26325 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-25824/mod-gnutls
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0996/libheif
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dsa-needed: claim rails
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3341-1 for curl
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] lts: take emacs
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5362-1 for frr
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] snakeyaml spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3342-1 for freeradius
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] 5 commits: Add Debian bug reference for CVE-2021-42521/vtk9
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] php7.4 DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] update CVE list
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3427/deluge for now via experimental
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-27672/xen via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Take care of releasing multipath-tools as prepared
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3343-1 for mono
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] lts: take imagemagick
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2023-23918 as not-affected for Buster.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-48338: Vulnerable code introduced after buster
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: add php7.3 to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-24329 seems still unfixed in python3.11
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] LTS: claim php7.3 in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-24607/qt6-base via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2017-1000
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add links to follow-up commits for CVE-2022-32212/nodejs.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2023-23919/nodejs as not-affected for buster.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][fix_987283] 5306 commits: claim net-snmp like for ELA
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][fix_987283] Simplify DELETE FROM functions
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][fix_987283] Check whether the ignored-debian-bug-packages is changed
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2023-24809 (nethack) marked as no-dsa as it is a minor issue.
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3344-1 for nodejs
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Add comment for multipath-tools
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for apr-util update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: claim firmware-nonfree in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] LTS: claim spip in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Pinpoint upstream tag introducing issue for CVE-2022-48338
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-25193/harfbuzz
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] qtbase-opensource-src-gles n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] add nodejs to dsa-needed and claim it
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-48337: Add note about memory leak in original fix
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Devices affected by CVE-2021-2323 and CVE-2021-44545 are not supported by...
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add as well Debian downstream reference for memory leak for original patch
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26544/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26545/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1033/froxlor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixes for CVE-2022-3770{3,4,5}/amanda via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add missing meta-info
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Update note on man2html
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3345-1 for php7.3
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] u-boot/buster is not affected by CVE-2022-33103 and CVE-2022-33967
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] LTS: claim syslog-ng in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-37708/docker.io
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3331-2 for python-cryptography
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26605/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26606/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-26607/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new rust-ascii issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] qtbase-opensource-src fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-19921/runc: possibly re-introduced by CVE-2021-30465 fix
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-38725/syslog-ng: Add reference to upstream fixes.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-41862/postgresql-11: fix triage: buster not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-41724/golang-1.11: buster not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] libgit2 spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Revert "Devices affected by CVE-2021-2323 and CVE-2021-44545 are not supported...
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3346-1 for python-werkzeug
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-41862
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove additional whitespace in NOTE
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-38578: Remove annotation that upstream bug is private
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3347-1 for spip
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Add one new temporary entry for spip issue fixed in 4.2.1, 4.1.8, 4.0.10 and 3.2.18
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some mattermost specific CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1070/teampass, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] curl DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add spip to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1077/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Claim spip
Sebastien Delafond ( at seb)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1076/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1075/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1074/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add oss-security reference for CVE-2023-1074
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-1073/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for rust-bumpalo issue (RUSTSEC-2022-0078)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22995/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-23931/python-cryptography
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new node-cookiejar issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new 389-ds-base issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new markdown-it-py issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new zoneminder issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-XXXX/spip: Add reference to upstream fixes.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] previous spip issue CVEfied
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] spip fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for markdown-it-py issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Specify upstream tag for spip issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new linux issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Sync information for CVE-2023-0461 with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: mention blockers for emacs and python3.7
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-24998/libcommons-fileupload-java: add cautionary note
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Clarify status for CVE-2016-10127
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from two rejected CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove notes from rejected CVE-2021-34250
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-27320/sudo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for markdown-it-py issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark removal for mongo-tools from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-27320/sudo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-27371/libmicrohttpd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-27372/spip assigned
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Process NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop temporary workaround entry for DLA-3347-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2021-21416
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-21305: Add upstream commit reference for 1.3.y branch
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-32823: Add upstream tag information
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25901/node-cookiejar
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for node-cookiejar via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Claim node-css-what in dla-needed.txt
Bastien Roucariès ( at rouca)
- [Git][security-tracker-team/security-tracker][master] CVE-2023-27372/spip: Add references to regression fix.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3348-1 for syslog-ng
Guilhem Moulin ( at guilhem)
Last message date:
Tue Feb 28 23:21:01 GMT 2023
Archived on: Tue Feb 28 23:21:05 GMT 2023
This archive was generated by
Pipermail 0.09 (Mailman edition).