January 2023 Archives by thread
Starting: Sun Jan 1 08:10:21 GMT 2023
Ending: Tue Jan 31 22:07:01 GMT 2023
Messages: 741
- [Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process two NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop some TODO items for CVEs meant to be REJECTED
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add snakeyaml to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reverted d2c2b240ffcc27edbc1008b66866fe49a62457dd since it is unclear whether...
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] LTS: add nheko to dla-needed.txt
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Marked CVE-2022-39209 and CVE-2022-24724 as no-dsa for buster following the...
Ola Lundqvist ( at opal)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3341/ffmpeg
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3260-1 for node-xmldom
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Process some NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-41881,netty: Link to fixing commit
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2018-109{8,9}/etcd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2022-46175/node-json5
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] buster isn't affected by CVE-2020-27839
Stefano Rivera ( at stefanor)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-37136, CVE-2021-37137, CVE-2021-43797, CVE-2022-41881, CVE-2022-41915, netty
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0030/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47952/lxc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add additionally git tag information for two upstream commits
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim smarty3.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim ruby-sinatra.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Clarify that webkit2gtk has been uploaded and needs the DLA
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2021-39359/libgda5
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track upstream commit for CVE-2021-3468/avahi
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] More triage of current ceph issues
Stefano Rivera ( at stefanor)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-40151 and CVE-2022-40152
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add additional references for CVE-2022-40151 and CVE-2022-40152
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add commit reference for CVE-2022-41966
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-41966/libxstream-java
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two net-snmp issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add project-zero reference for CVE-2022-41912
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add old firefox/thunderbird issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] register embedded code copy of tolua++ in conky 1.17+
Vincent Cheng ( at vcheng)
- [Git][security-tracker-team/security-tracker][master] Move note down as it belongs to conky
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for openvswitch issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-41039/mosquitto via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Link to the commit that introduced the issue
Stefano Rivera ( at stefanor)
- [Git][security-tracker-team/security-tracker][master] LTS: claim net-snmp in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] bullseye triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim curl, update notes in dla-needed.txt
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] NFUs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] bugnums
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dla: update nvidia status
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-3341/ffmpeg: buster postponed + fix-up version comment in other recent ffmpeg entries
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-*/nvidia-graphics-drivers-legacy-340xx: buster ignored
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22456/viewvc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-45143/tomcat
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop trailing whitespaces on some notes
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4025/chromium
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3863/chromium
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3842/chromium
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for frr issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream references for CVE-2022-37035/frr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process one NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim libetpan.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-20928/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] "new" gdvb issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dcmtk fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22464/viewvc and update reference for CVE-2023-22456
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2019-25085/glib2.0: buster not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Adjust reference for glib2.0 commit for CVE-2019-25085
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: add viewvc to dla-needed.txt
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-00{54,51,49}/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2022-4178/chromium
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-31631/php
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-41861/freeradius
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-41860/freeradius
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2017-20146/golang-github-gorilla-handlers
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0044 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0047/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-33621/ruby*: fix patch version
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-36081/tesseract
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-31631/php
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add more information to freeradius issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dla: check bullseye 11.6 updates
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3261-1 for libetpan
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] dla: add fig2dev
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3262-1 for smarty3
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2019-2509{6,7,8}/extplorer
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-2347/u-boot via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2021-4235/golang-yaml.v2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0091 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] NFU
Henri Salo ( at hsalo-guest)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim libtasn1-6.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim viewvc.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-31631/php7.3: buster postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] golang* buster triage/harmonization
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2022-24724/ruby-commonmarker
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22671/ghidra
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process two "new" network-manager issues, CVE-2014-12504{2,3}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add openvswitch for DSA (review)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for three libbpf issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for libbpf issues CVE-2022-353{3,4} and CVE-2022-3606
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-40897/setuptools
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-40897 as no-dsa for bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for various linux CVEs via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-47952/lxc: buster postponed
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] python-git fixed in sid
Moritz Muehlenhoff ( at jmm)
- Processing b32a565f5f0c454002aa575854798d4809a5706b failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Process some new gpac issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2019-6129/libpng1.6
Salvatore Bonaccorso ( at carnil)
- Processing 898f6ce8d75c62d3d160c96d9def0fa1c44e0c1d failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47655/libde265
Salvatore Bonaccorso ( at carnil)
- Processing 734365e7ca1486e78c206a538177c83022a8f0d7 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add two more gpac issues
Salvatore Bonaccorso ( at carnil)
- Processing 5e6ee74055e03bdd9fff2b055b96ed5e4e9fd836 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] node-socks in the archive now
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] radare n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] ATS DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Track ruby3.0 as removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some more gpac issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4645{6,7}/nasm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two more gpac issues: CVE-2022-464{89,90}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2020-36646/libzen
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Claim tiff in dsa-needed.txt
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3263-1 for libtasn1-6
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] ceph fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add back trailing line for dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Take varnish from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new patchelf issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new rust-tokio issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag reference for CVE-2022-44940
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove TODO item for CVE-2023-22460
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0105 as NFU
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0122/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] triage leptonlib
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] dlt-daemon fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] avahi fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new kodi issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3264-1 for ruby-sinatra
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for avahi via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new rust-bzip2 issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: delete heimdal annotations conflicting with ELTS tracker
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] Correct version number for ruby-sinatra in DLA-3264-1.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] reserve DLA-3265-1 for exiv2
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-46176/cargo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-29507: Reference upstream tag and non-merge commit
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reserve DSA-5312-1 for libjettison-java.
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim libxstream-java in dsa-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Document that maintainer is preparing updates for lava
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new chromium issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: Add missing VCS information in packages
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: Add missing meta information in packages
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0210/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3266-1 for viewvc
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] python3.9 removed from sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] golang-github-masterminds-goutils n/a, NFU (concludes external check)
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-41966,libxstream-java: fixed in unstable
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] bookworm triage
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] emacs DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2022-45132/lava
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4696/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-37454/pysha3
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22626/ruby-pghero
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Reserve DSA-5315-1 libxstream-java
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3267-1 for libxstream-java
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3268-1 for netty
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Mark guacamole-client as removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark kopanocore as removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark guacamole-client as dropped in every supported suite
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed exiv2 update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-2345{4,5}/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] link CVE-2020-17354 to lilypond, now public
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] cargo fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Update information for ancient CVE-2006-3360/pypsysinfo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-2414/dogtag-pki
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-46176/rust-cargo via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] claim DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-2345{6,7}/upx-ucl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-0122/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-43974/matrixssl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for varnish issue via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust version for CVE-2022-3643/linux to 6.1.4-1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-46449/mpd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-434{4,5}wireshark assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4743/libsdl2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new tor issue (fixed in sid)
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: claim modsecurity-crs in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] LTS: claim libde265 in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] LTS: claim libapreq2 in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0179/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop unimportant severity for CVE-2023-23456
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-1622,CVE-2022-1623/tiff: buster not-affected
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] openvswitch, lava, chromium DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] fix CVE list
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0266/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-23559/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0288/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop notes from CVE-2022-22199
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop notes from CVE-2022-20531
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2015-3208
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0057/pyload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2019-25085 as not-affected for epiphany-browser/buster
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2023-0054 as no-dsa for Buster
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2022-37290/nautilus fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE assigned for tor issue
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2022-37290/nautilus
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add several new tikiwiki CVEs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3269-1 for libapreq2
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2018-14628/samba
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0297/pyload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: LTS: claim node-minimatch in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-33621/ruby3.1
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Re-claim node-moment from Guilhem
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: claim lemonldap-ng in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2022-4285/binutils
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-38533/binutils via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3271-1 for node-minimatch
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] 5 commits: mark CVEs of freeradius as no-dsa for Buster
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2023-0288 as no-dsa for Buster
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for sgt-puzzles issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: semi-automatic unclaim after 2 weeks of inactivity
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] LTS: take xfig
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-40704/phoronix-test-suite
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track update for CVE-2022-46175/node-json5 proposed for bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-031{5,6}/froxlor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two more NFUs for Apache Superset
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process two more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new radare2 issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] "new" nim issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new log4j issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] "new" node-debug issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new gitlab issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new shiro issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new netdata issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: claim ring in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] tor DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Adjust GHSA reference for CVE-2023-22496/netdata
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add note for jupyter-core with respect to maintainer update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process several NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some more NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] zip4j fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] reclaim xrdp
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-47952/lxc
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new rust-git2, rust-bumpalo issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Superset references
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dla: claim tiff and update status
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] lts: take firefox-esr and thunderbird
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] pypdf2 spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-3570/tiff: replace orphan commit with slightly different merged fix
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add new libxpm issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information from CVE-2020-23109/libheif
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23521 and CVE-2022-41903 for git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2022-41903/git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commits for CVE-2022-23521/git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add three new apache2 issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track libxpm fixes via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47950/swift
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for git issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop use of CVE-2022-23816
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add new firefox-esr issues from mfsa2023-02
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add firefox-esr to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add firefox issues from mfsa2023-01
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0330/qemu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add git to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add references for {CVE-2022-41903,CVE-2022-23521}/git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add tracking for lxc via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixing version for firefox-esr issues for mfsa2023-02
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for firefox issues from mfsa2023-01
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for three apache2 issue fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new Java issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new virtualbox issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new mysql issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Correct status for CVE-2023-0266/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] new arm-trusted-firmware issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] claim sudo
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22809/sudo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for sudo update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3272-1 for sudo
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] one more firefox issue fixed
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] firefox-esr DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for some linux CVEs with unstable upload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unsable for CVE-2023-22809/sudo
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Four openimageio CVEs fixed with unstable upload of v2.3.21.0
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23538/singularity-container
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0394/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Adjust Debian bug references for rust-bzip2 and rust-tokio issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0358/gpac
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark CVE-2022-22728/libapreq2 as no-dsa for bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3273-1 for libitext5-java
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim lava in dla-needed.txt
Markus Koschany ( at apo)
- Processing 4fce543ab730acf7eabc3d586b6a695349a99520 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2023-22895/rust-bzip2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2023-22466/rust-tokio
Salvatore Bonaccorso ( at carnil)
- Processing bee18429ab8cc74774e39beb6cf173d92fa8a9fc failed
security tracker role
- Processing bff75050c769bbbdd9a4d4e9651126279b053276 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-35977 and CVE-2023-22458 for redis
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22298/pgadmin4, itp'ed
Salvatore Bonaccorso ( at carnil)
- Processing 9c5555a8076c3100f71d711916ee83bfba4d2ac9 failed
security tracker role
- Processing fd832329ddd64db561d76ed1a9347b09a25c8734 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] Add new qt issues CVE-2022-40983 and CVE-2022-43591
Salvatore Bonaccorso ( at carnil)
- Processing 5f9cad1c0baf7624cc79084546acc117dbdf4e10 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] puppetserver is in the archive now
Moritz Muehlenhoff ( at jmm)
- Processing 21109cf0143fc7e916bb8e3a62abf3212b97a907 failed
security tracker role
- [Git][security-tracker-team/security-tracker][master] additional sudo references
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] lts: take webkit2gtk
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3274-1 for webkit2gtk
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3275-1 for firefox-esr
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2020-25265
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] swift fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: fix old DLA entries
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Track proposed libapreq2 update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47318 and CVE-2022-46648 for ruby-git
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47929/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5323-1 for libitext5-java.
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3276-1 for lava
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Update snakeyaml NOTE and claim powerline-gitstatus in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-3996/openssl via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for lava issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add links to more CVE search services
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] Add modsecurity-apache to dla-needed
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] new golang-golang-x-net issue (resolved in all suites)
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] android-platform-tools fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Revert "Add links to more CVE search services"
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add additional infos for modsecurity-apache.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3277-1 for powerline-gitstatus
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Claim snort in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-29{799,800}/network-dispatcher via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-48279/modsecurity-apache
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-24021/modsecurity-apache
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from rejected CVE-2010-10005
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3278-1 for tiff
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] Add three new gpac issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22745/tmp2-tss
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two 389-ds-base issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22617/pdns-recursor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker] Pushed new branch add-more-links
Paul Wise ( at pabs)
- [Git][security-tracker-team/security-tracker][master] CVE-2022-48279 also affects modsecurity.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2022-38223/w3m
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add minetest to irrlicht embedded code copies list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-10688/resteasy3.0 via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-24021
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22742/libgit2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add GHSA reference for CVE-2023-22742/libgit2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22741/sofia-sip
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark printfilters-ppd as removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0433/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-22458/redis
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22458/redis bug reference
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-22617/pdns-recursor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-22617/pdns-recursor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-22742/libgit2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-22745/tpm2-tss
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update snort notes in dla-needed.txt
Markus Koschany ( at apo)
- [Git][security-tracker-team/security-tracker][master] data/dsa-needed.txt: claim git
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-22617/pdns-recursor via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2019-16370/gradle via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add tempoary entries for wireshark issues wnpa-sec-2023-[01-07]
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22884/airflow
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update status for CVE-2020-21598 CVE-2020-21600 and CVE-2020-21602
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add and claim spip
Sebastien Delafond ( at seb)
- [Git][security-tracker-team/security-tracker][master] Add info for CVE-2023-24056/pkgconf
Andrej Shadura ( at andrewsh)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2023-24056
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Assign spip to seb
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update bug numbers for CVE-2022-43245, CVE-2020-21596, CVE-2020-21594 (bugs have been splitted)
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] 3 commits: Process some NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-21594
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-24038/libhtml-stripscripts-perl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Update information for several CVEs addressed in libde265/1.0.9 upstream
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-3770{3,4,5}/amanda
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for redis issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for two openimageio issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed apache2 update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track proposed update for w3m via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 8 commits: Mark CVE-2023-{0358,2314{3-5}}/gpac as EOL for buster
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Mark CVE-2023-2249{6,7}/netdata as no-dsa for buster
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Add wireshark to dla-needed
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] LTS: add some meta-info
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-22742/libgit2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: take openjdk-11
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-48281/tiff
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3279-1 for trafficserver
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: claim nheko
Abhijith PA ( at abhijith)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for linux update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Mark php8.1 as removed from unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process two CVEs for signal-desktop, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0435/pyload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2023-24021/modsecurity-apache
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3064/golang-yaml.v2
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5325-1 for spip
Sebastien Delafond ( at seb)
- [Git][security-tracker-team/security-tracker][master] new thunderbird issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Take libhtml-stripscripts-perl from dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla: claim git
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] nodejs, swift DSAs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new nova issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new cinder issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new glance issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2023-24038
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2022-47655
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Drop notes for CVE-2022-3522, was REJECTED (withdrawn by CNA as no security issue)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2022-2220
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add temporary entry for spip issues (no CVEs)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for thunderbird via unstable for mfsa2023-03
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove doubled references for CVE-2022-47951
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reverse DLA-3280-1 for libde265.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3281-1 for swift
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Add fix link to the libhtml-stripscripts-perl
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for mysql-8.0 issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for three redmine CVEs fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for three ruby-git CVEs fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] CVE-2020-21594 was fixed in 1.0.3-1+deb10u1.
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Remove unneeded postponed entry for CVE-2020-21594 in bullseye
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0469/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0468/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47016/tmux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] more updates of fixed CVEs in libde265
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-4254/sssd
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Revert "more updates of fixed CVEs in libde265"
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Amend DLA-3240-1 with CVE's that have been fixed with this upload already,...
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Take libhtml-stripscripts-perl
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] freedroidrpg
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] virtualbox fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] DLA: Take several packages
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] sgt-puzzles fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] chromium fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new bind issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new xen issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for bind9 issues via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2020-1493{8,9}/freedroidrpg
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track propsed libxpm update via bullseye-pu
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-48281/tiff
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add bind9 to dsa-needed list
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-22741/sofia-sip
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 3 commits: LTS: add tiff to dla-needed.txt
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] CVEs for wireshark assigned
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for two git CVEs addressed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2022-48281/tiff
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] lts: take bind9
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] Take tiff
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] LTS: give back several packages to get down to 3
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] openjdk-21 fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] openjdk-11 fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] openjdk-17 fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3282-1 for git
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] LTS: reclaim curl ange imagemagick; update notes
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] dla: claim runc
Sylvain Beucler ( at beuc)
- [Git][security-tracker-team/security-tracker][master] motif embeds libxpm
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] LTS: release claim on ring in dla-needed.txt
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add two new glpi issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] bind9, chromium DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3283-1 for modsecurity-apache
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Add some new additional glpi issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47024/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Process some new NFUs
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-45748/assimp
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Expand note for multipath-tools
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3488/bind9
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0341/editorconfig-core
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] dla-needed: sox is unfixable
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] new rails issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new ruby-rack issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] NFU (concludes external check)
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2020-36659 and CVE-2020-36658.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] dla-needed: claim sox
Helmut Grohne ( at helmutg)
- [Git][security-tracker-team/security-tracker][master] two R515 specific Nvidia issues and related NFUs
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] papaparse embedded in mediawiki
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] curl DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2020-36649
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2020-36659/libapache-session-browseable-perl
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-36658
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2022-4457{0,1,2}
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Update information for CVE-2023-22794/rails
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-22799/ruby-globalid
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Sync status for CVE-2023-0468/linux with kernel-sec
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0512/vim
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add two new CVEs for pyload, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-39537/ncurses
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2023-0047
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2022-23529 (rejected, not a vulnerability)
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Mark two openimageio issues as fixed with unstable upload
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Review first batch of CVEs for openimageio
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Review second batch of openimageio issues, fixed in unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3284-1 for libapache-session-ldap-perl
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3285-1 for libapache-session-browseable-perl
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reference list posts for CVE-2022-3770{4,5}/amanda
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-42330/xen
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-3770{4,5}/amanda
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3286-1 for tor
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] add Debian bug references for ruby-rack issues
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-45748
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3287-1 for lemonldap-ng
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] LTS: claim dojo in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] openjdk-11 DSA
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-22799/ruby-globalid
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: remove <postponed> tag from CVE-2022-27774, which has been fixed
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3288-1 for curl
Roberto C. Sánchez ( at roberto)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3289-1 for dojo
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3290-1 for libzen
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5332-1 for git
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA-5333-1 for tiff
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0564/froxlor
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] LTS: claim node-object-path in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Track source wise fix for CVE-2022-4842/linux via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] add tiff to dsa-needed.txt and claim it
Aron Xu ( at aron)
- [Git][security-tracker-team/security-tracker][master] LTS: Claim apache2 and asterisk
Lee Garrett ( at lgarrett)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3291-1 for node-object-path
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: take libgit2
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: add ruby-rack to dla-needed.txt
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2022-24839/nekohtml via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Track fixed version for openjdk-8 issues fixed via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-45907/pytorch fixed version via unstable
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Take ruby-rack and tmux
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3292-1 for sofia-sip
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] DLA: take fig2dev
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Reserve DSA number for varnish update
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reclaim modsecurity-crs
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Add two CVEs for limesurvey, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] also track nvidia-open-gpu-kernel-modules for recent Nvidia issues
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] dla-needed.txt: Add note for node-css-what.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] 2 commits: LTS: claim node-qs in dla-needed.txt
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] drop RUSTSEC-2023-0002 (retracted, possibly because it's for a new security...
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] tar non issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new node-jszip issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] two gitlab n/a
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new ruby-sanitize issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] new pgpool2 issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] node-qs: Add note for CVE-2022-24999.
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] new opusfile issue
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] twisted fixed in sid
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2022-48285
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2023-23627/ruby-sanitize
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] libzen spu
Moritz Muehlenhoff ( at jmm)
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage cinder, glance and nova for buster LTS (CVE-2022-47951)
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage redis for buster LTS (CVE-2022-35977)
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3293-1 for modsecurity-crs
Tobias Frost ( at tobi)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3294-1 for libarchive
Thorsten Alteholz ( at alteholz)
- [Git][security-tracker-team/security-tracker][master] Change VCS for libgit2
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Restore fixing information for CVE-2021-35368
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add Meta-Information to some newly added packages
Anton Gladky ( at gladk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-0240/linux
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3295-1 for node-moment
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3296-1 for libhtml-stripscripts-perl
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3297-1 for tiff
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3298-1 for ruby-rack
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3299-1 for node-qs
Guilhem Moulin ( at guilhem)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3300-1 for glance
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3301-1 for cinder
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3302-1 for nova
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Reserve DLA-3303-1 for ruby-git
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Take ruby-sidekiq and libapache2-mod-auth-mellon
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Add a note for rails
Utkarsh Gupta ( at utkarsh)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-2392{1,2,3}/moodle
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-23552 and CVE-2022-39324 for grafana
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2023-2248{3,4,5,6}/cmark-gfm
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Associate CVE-2022-4510 with binwalk
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2022-45748 in assimp for buster LTS.
Chris Lamb ( at lamby)
- [Git][security-tracker-team/security-tracker][master] The code affected by CVE-2021-37530 was not present before bullseye
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Triage bind9 issues for buster
Emilio Pozuelo Monfort ( at pochu)
- [Git][security-tracker-team/security-tracker][master] CVE-2021-37529 was introduced in 3.2.8 in the same commit as CVE-2021-37530
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-3560/pesign
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 2 commits: Remove no-dsa for buster for CVEs fixed in the DLA
Adrian Bunk ( at bunk)
- [Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2022-3560/pesign
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-28331/apr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-25147/apr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-24963/apr
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] Add CVE-2022-47854/i-librarian, itp'ed
Salvatore Bonaccorso ( at carnil)
- [Git][security-tracker-team/security-tracker][master] 4 commits: CVE-2019-15058/CVE-2019-20056: Add notes about possible regression in upstream issue
Adrian Bunk ( at bunk)
Last message date:
Tue Jan 31 22:07:01 GMT 2023
Archived on: Tue Jan 31 22:07:05 GMT 2023
This archive was generated by
Pipermail 0.09 (Mailman edition).