June 2025 Archives by date

Messages sorted by: [ thread ] [ subject ] [ author ]
More info on this list...

Starting: Sun Jun 1 00:01:52 BST 2025
Ending: Mon Jun 30 22:59:20 BST 2025
Messages: 818

[Git][security-tracker-team/security-tracker][master] The outstanding issue in snapcast has been fixed in Sid/Trixie Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Update the patch links for CVE-2021-27138 and CVE-2021-27097 Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Add progress note for u-boot Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Reference full commit identifier for introducing commit Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add upstream commit reference for CVE-2025-32434 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4203-1 for kitty Tobias Frost ( at tobi)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4204-1 for twitter-bootstrap3 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2025-48938 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] tcpdf DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add note for activemq Emmanuel Arias ( at eamanu)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4205-1 for libreoffice Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] trixie triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Document that node-bootstrap-sass embded bootstrap3 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-40908/libyaml-libyaml-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track proposed update for libyaml-libyaml-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-40908 as no-dsa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Take angular.js/dla-needed Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add links to explanation and fix for CVE-2025-30714 Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2025-30714 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-1647/twitter-bootstrap3 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fix via experimental for CVE-2024-56138 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new roundcube issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] roundcube CVEfied plus additional references Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] CVE-2024-42010/roundcube: Add link to regression fix. Guilhem Moulin ( at guilhem)
[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] 2 commits: Update fixing commits and links to patches for edk2 issues. Markus Koschany ( at apo)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4206-1 for asterisk Markus Koschany ( at apo)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4207-1 for edk2 Markus Koschany ( at apo)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] kmail-account-wizard spu Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add three new catdoc issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add catdoc to dsa-needed file Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add references to upstream tags for CVE-2024-42010 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track proposed fix for twitter-bootstrap3 via bookworm-pu Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Adjust version for kmail-account-wizard Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-27533/activemq via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for catdoc issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new issues in python-signxml Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48958/froxlor, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48866/modsecurity-apache Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] roundcube DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] fix CVE entry Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-5455/Qt Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new CVEs for sslh Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-29785/golang-github-lucas-clemente-quic-go Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49112/valkey Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for python-signxml issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-48866 Salvatore Bonaccorso ( at carnil)
Automated Request:-20916 I.T Alioth-lists Digital Notification | Do Not Reply
[Git][security-tracker-team/security-tracker][master] Add two new chromium issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for CVE-2025-49112 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for sslh issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48387/node-tar-fs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track proposed update for python-tornado via bookworm-pu Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] add reference for CVE-2024-48869 Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Update CVEs fixed by DLA-4199-1: include CVE-2024-51058 Santiago R.R. ( at santiago)
[Git][security-tracker-team/security-tracker][master] Track fixed version for isc-kea issues via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-48866/modsecurity-apache Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-0620/samba Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] update gimp references Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] node-tar-fs fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reference linux hardening backports to make comprehensive fix for CVE-2025-4598 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-46548 as NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-47081/requests Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-0620/samba Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new open5gs issues, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new python issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] corosync spu Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add initial ifnormation for CVE-2025-35036 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process two NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-30167/jupyter-core Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for chromium issues via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new curl issue (CVE-2025-5399) Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes from one rejected CVE Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process two NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-5399/curl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add zscaler Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Remove notes from one rejected CVE Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for MailEnable Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] chromium dsa Andres Salomon ( at dilinger)
[Git][security-tracker-team/security-tracker][master] Drop tracking of proposed python-tornado bookworm-pu (will get a DSA) Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48432/python-django Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4208-1 for mariadb-10.5 Otto Kekäläinen ( at otto)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-5601/wireshark Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Update product list for Cisco NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add one more product for VMware NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49466/aerc Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for python-django via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add MIM Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new radare2 issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] remove stray TODO Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new qtimageformats issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-20211-10007/libfile-find-rule-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2011-10007 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for libfile-find-rule-perl update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: mark CVE-2025-26519/musl as postponed (Minor issue) for bullseye, drop... Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4209-1 for libfile-find-rule-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 2 commits: bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Drop notes one one rejected CVE Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVEs of jython as EOL in Bullseye Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2011-10007 via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove duplicated NOTE Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] DSA for libfile-find-rule-perl released Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-5601 via experimental Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-0620/samba via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] trixie triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-4673/go Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-0913/go Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-22874/go Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new glibc issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two more radare2 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Refer two radare2 issues to the same set of #1107316 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Claim ublock-origin in dla-needed.txt Markus Koschany ( at apo)
[Git][security-tracker-team/security-tracker][master] 3 commits: add catdoc Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] mark CVE-2024-47081 as postponed for Bullseye Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4210-1 for python-django Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] dla: take modsecurity-apache Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] webkit2gtk DSA-5937-1 Alberto Garcia ( at berto)
MS Dynamics AX-NAV-SL-GP Customers List Suzanne Cooper
[Git][security-tracker-team/security-tracker][master] lts: take webkit2gtk and ephy Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] Add three new CVEs from Linux kernel CNA Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 5 commits: mark CVE-2025-44021 as postponed for Bullseye Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] gimp, tornado DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] one CVEless gimp issue also fixed in bookworm Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] qt6-imageformats fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Process more NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-2336/angular.js Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update upstream tags for some python issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-4673 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-22874 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] CVE assigned for gimp issue Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-47950/coredns Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Re-associate two older NFUs to ITP'ed entry for coredns Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: claim roundcube in dla-needed.txt Guilhem Moulin ( at guilhem)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49128/jackson-core Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add notes about icingaweb2 Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Track fix for one CVE in linux via unstable upload Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2025-49128 as postponed for Bullseye Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] add common-beanutils Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] CVE-2022-25844/angular.js Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2023-26116 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2023-26117 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2023-26118 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] 2 commits: add gst-plugins-bad1.0 Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] dla: fix package name Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla: take gst-plugins-bad1.0 Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Track fixed version for two nbdkit issues fixed via unstable upload Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] CVE-2024-8372 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2024-8373/angular.js Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2024-21490/angular.js Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-0716/angular.js Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] cve-2025-2336/angular.js Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add B.Braun Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-5601/wireshark Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for hibernate-validator Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-2336 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] mark CVE-2025-5601 as postponed for Bullseye Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] Fix typo in source package name for aerc Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-49466/aerc in bookworm Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Coordinating with maintainer for catdoc Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Take care of releasing update prepared by maintainer for modsecurity-apache Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for modsecurity-apache update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4211-1 for roundcube Guilhem Moulin ( at guilhem)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] jq fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] mariadb fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4212-1 for modsecurity-apache Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2025-27151/valkey via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla-needed: Add status update for angular.js Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add a note about sogo Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add cjson Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: icinga2 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add icu Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add node-tar-fs Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add php-league-commonmark Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: Add sslh Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-5455 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-5455/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] weechat/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-5683/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla: take node-tar-fs Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] CVE-2025-48057/icinga2 does not affect the binaries in bookworm or bullseye Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] dla: take cjson Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new libarchive issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla-needed: golang-github-lucas-clemente-quic-go Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-2581 add note Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-5935/open5gs, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Discourse Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] node-tar-fs spu Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-38001 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-38001 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] revise fixed version for CVE-2025-48432 Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] ublock-origin fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] wireshark fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add reference to upstream commit for CVE-2025-48432 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49133/libtpms Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add secondary bug reference to bring package on radar for migration Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-49133 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-5914/libarchive as no-dsa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark libarchive issues as no-dsa for bookworm Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for libarchive issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track proposed update for ublock-origin via bookworm-pu Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes from withdrawn and rejected CVE Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new issues for octoprint, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new issues in pspp Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49140/golang-github-pion-interceptor Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new chromium issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] libarchive/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4213-1 for curl Carlos Henrique Lima Melara ( at charles)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Salesforce Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add initial tracking for CVE-2025-49091/konsole Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add references for CVE-2025-49091/konsole Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend Microsoft list Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add two new firefox issues from mfsa2025-47 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for firefox issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update information for CVE-2024-6839/python-flask-cors Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Blackberry Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-5986/thunderbird from mfsa2025-49 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Avaya Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2025-595{8,9}/chromium Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] rust-lexical-core fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add new QT issue (needs further checking) Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Insyde Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Update Microsoft list Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new node-brace-expansion issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla-needed: add konsole Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add thunderbird Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla: take thunderbird Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Update type of update in sync with announcement (regression) Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-49091/konsole Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update upstream tag information for CVE-2025-5889 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] gst-plugins-bad1.0 DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Split off tracking for libcryptx-perl issue to dedidated CVE Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove annotations related to rejected CVE-2025-3877 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-40915 as NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-40914/libcryptx-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-40914/libcryptx-perl as no-dsa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process two new mattermost-server issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49146/libpgjava Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process two NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4214-1 for node-tar-fs Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4215-1 for ublock-origin Markus Koschany ( at apo)
[Git][security-tracker-team/security-tracker][master] chromium dsa Andres Salomon ( at dilinger)
[Git][security-tracker-team/security-tracker][master] Track fixed version for python-signxml issues fixed via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Correct upstream tag for CVE-2025-4947 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-4947 and CVE-2025-5025 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Clarify core-fixes for CVE-2025-4598 and optinal commits covered for CVE-2025-4598 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Document embedded copy of libtommath for libcryptx-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-49146/libpgjava Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-40914/libcryptx-perl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-5889/node-brace-expansion Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-49133/libtpms via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] also add CVE-2025-4476 for soup2.4 Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFU Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Update Microsoft entry Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new nomad issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Track fixes for CVE-2025-5889 via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for 5th Python tarfile-filter issue Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Lenovo Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] nvidia-cuda-toolkit fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Annotate tha the original fix for CVE-2025-2760 is incomplete Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove tracking of fixing version for CVE-2025-2760/gimp Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] CVE-2025-35036/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-589[8-9]/bullseye pspp Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-40914/bullseye libcryptx-perl Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2024-3596/freeradius (blastradius issue) as postponed in bullseye Santiago R.R. ( at santiago)
[Git][security-tracker-team/security-tracker][master] Add followup merge request for CVE-2025-2760 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-49112/valkey via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6021/libxml2 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-6021/libxml2 as no-dsa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-6021/libxml2 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some gitlab CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2024-44905, retain TODO item for further investigation Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] p0 reference Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] three new libxml2 issues, short of details Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add references for libxml2 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add CNA based rule for Hikvision Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add another product for VMware rule Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] associate CVE-2025-49589 with src:pcsx2 Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla-needed: add libxml2 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-5889/bullseye node-brace-expansion Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] libpgjava fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] spring n/a Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla: drop thunderbird, as discussed Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] new salt issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla-needed: cacertificates Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: catdoc add notes Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add libpgjava Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] LTS: claim hdf5 in dla-needed.txt Jochen Sprickerhof ( at jspricke)
[Git][security-tracker-team/security-tracker][master] lts: take ca-certificates Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] 2 commits: Claim mbedtls in dla-needed.txt Markus Koschany ( at apo)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-2312 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2024-57966/ark Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim konsole. Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-49796/libxml2 as no-dsa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update classification for two libxml2 CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for libxml2 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-49589 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-4476/libsoup2.4 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-2760/gimp Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6035/gimp Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6052/glib2.0 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] CVE-2025-5024 gnome-remote-desktop Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some more NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add CNA based rule for Bosch products Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process one more NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla: take icu Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-2843 as NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add reference for reports for sslh issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla-needed: add note about catdoc Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-1080/libreoffice Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2023-26819/cjson Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process two NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-49112/redis as no-dsa/postponed for bookworm Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2025-49112/redis as no-dla/postponed for bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] dla-needed: add jgit Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update information for CVE-2025-6052/glib2.0 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-6052/glib2.0 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla-needed: take dmctk Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for pspp issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for xwiki Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend rule for Tenable Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2025-6052/glib2.0 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] CVE-2025-49589/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4216-1 for cjson Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4217-1 for icu Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla: add note Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] NFU Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4218-1 for webkit2gtk Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] Track fixed version for catdoc via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2023-53154/cjson as no-dsa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track proposed cjson fixes via bookworm-pu Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla: take catdoc Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] CVE-2025-4598 fix of incomplete fix of CVE-2022-4415 Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] CVE-2025-4598/bullseye Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Triage CVE-2025-5986 in thunderbird for bullseye LTS. Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage node-send for bullseye LTS (CVE-2025-5889) Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] 2 commits: Add two new assimp issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-4748/erlang Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla: take node-send Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48976/libcommons-fileupload-java Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update information for tomcat and commons-fileupload issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: claim libxml2 in dla-needed.txt Guilhem Moulin ( at guilhem)
[Git][security-tracker-team/security-tracker][master] LTS: re-claim systemd in dla-needed.txt to resume work Carlos Henrique Lima Melara ( at charles)
[Git][security-tracker-team/security-tracker][master] Track fixed version for golang-1.23 in unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for golang-1.24 issues fixed via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6140/spdlog Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] cleanup rejected TP-Link entries Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add preliminary entry for CVE-2025-27587 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6141/ncurses Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Redact note on relation for CVE-2025-4598 to CVE-2022-4415 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] record fixes for openssl Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Process some more NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6020/pam Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fix for CVE-2024-10963/pam Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for VE-2025-6020/pam Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add reference to advisory for CVE-2025-6020 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new xorg-server issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for xorg-server issues fixed via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Fix typo in note Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4219-1 for gst-plugins-bad1.0 Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] lts: take xorg-server Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] add libblockdev Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for assimp issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-6141/ncurses Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2025-6119 & CVE-2025-6120 in assimp for bullseye LTS. Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] Revert "Triage CVE-2025-6119 & CVE-2025-6120 in assimp for bullseye LTS." Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for libxml2 issue Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for erlang issue Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new chromium issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla: take xmedcon Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Add new pam and libblockdev issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Fix typo: udisk2 -> udisks2 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for libblockdev update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4220-1 for konsole Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] new gdk-pixbuf issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add references for CVE-2025-6199 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for Citrix Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6196/libgepub Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2025-6019/libblockdev Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new python issue, CVE-2025-6069 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add reference to upstream issue for CVE-2025-6069 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for Trend Micro Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4221-1 for libblockdev Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] Track fixed version for chromium fixed via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla: grub2 status update Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-48945/pycares Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Triage CVE-2025-29785 as no-dsa for bullseye Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] glibc fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new protobuf issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new ATS issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Merge Linux CVE changes from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-38082/linux Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Merge Linux CVEs from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes on two rejected CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes on rejected CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 3 commits: Triage CVE-2025-6069 in jython for bullseye LTS. Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Triage node-serialize-javascript for bullseye LTS (CVE-2024-11831) Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] CVE-2019-9903/poppler: drop jessie annotation Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] CVE-2024-11831/node-serialize-javascript does not affect bullseye Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] dla: take gdk-pixbuf Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Add Debian bug report for CVE-2025-6199/gdk-pixbuf Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49847/llama.cpp Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new issues in Cloudflare quiche, reference itp'ed bug Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49015/libcouchbase Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-29646/open5gs, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-1088/grafana Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new clamav issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-4404/freeipa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] chromium dsa Andres Salomon ( at dilinger)
[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: reclaim pgagent, pgpool2 Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for Fortra Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] LTS: claim sslh in dla-needed.txt Andreas Henriksson ( at ah)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4222-1 for activemq Emmanuel Arias ( at eamanu)
[Git][security-tracker-team/security-tracker][master] LTS: claim u-boot in dla-needed.txt Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] LTS: claim ruby-graphql in dla-needed.txt Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Track fixed version for two Linux CVEs fixed via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-35927 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for trafficserver issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 5 commits: Triage CVE-2025-4673 in golang-1.15 bullseye LTS. Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for clamav issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update some Linux CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes on rejected CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes on CVE-2024-56786 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-43911/linux Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-4404/freeipa Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-4565/protobuf Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes from rejected CVEs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Merge some Linux changes from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Merge some CVE updates for Linux from kernel-sec Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add three new wabt issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6271/swftools Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-50200/rabbitmq-server Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-49014/jq Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-49014/jq Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Associate CVE-2023-40403 with libxslt Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add references for CVE-2025-6019 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new python-urllib3 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reference followup to CVE-2025-49176 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-49176 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-40403/libxslt Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-50200/rabbitmq-server Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for python-urllib3 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new kubernetes issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla: drop libstring-compare-constanttime-perl Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] dla: drop nsis Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] dla: fix-up merge Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-6199/gdk-pixbuf Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Take xorg-server as already done Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Expand regex based rule for code-projects Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-38083/linux Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: Add an update for busybox Sean Whitton ( at spwhitton)
[Git][security-tracker-team/security-tracker][master] LTS: Claim libmojolicious-perl in dla-needed.txt Sean Whitton ( at spwhitton)
[Git][security-tracker-team/security-tracker][master] Mark CVE-2024-58134 as ignored for bullseye per e-mail discussion Sean Whitton ( at spwhitton)
[Git][security-tracker-team/security-tracker][master] LTS: Ignore last remaining actionable libmojolicious-perl CVE Sean Whitton ( at spwhitton)
[Git][security-tracker-team/security-tracker][master] CVE-2025-46806/sslh: Link to the second part of the fix Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2025-20260 in clamav for bullseye LTS. Chris Lamb ( at lamby)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-49847/llama.cpp Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] konsole DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for tomcat issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-50054 as NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add three NFUs for PowSyBl Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-4981/mattermost-server Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-44203/hoteldruid Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two mattermost-server issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two hdf5 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add tracking for amd64-microcode via bookworm-pu Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-49847 via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: remove <not-affected> from CVE-2025-40775/bind9, also add bind9 to dla-needed.txt Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] dla: drop arm-trusted-firmware Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] dla: mediawiki status update Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] FD: drop September slot Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] dla: re-add golang-github-gorilla-csrf Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] dla: rails status update Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] auto-nfu:Add rule for SugarCRM Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Mark sslh CVEs as not affecting <= bookworm Andreas Henriksson ( at ah)
[Git][security-tracker-team/security-tracker][master] Revert "Mark sslh CVEs as not affecting <= bookworm" Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4223-1 for debian-security-support Santiago R.R. ( at santiago)
[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-30472 via unstable Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2025-46806/sslh Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: claim golang-golang-x-net in dla-needed.txt Andreas Henriksson ( at ah)
[Git][security-tracker-team/security-tracker][master] dla-needed.txt: Add url to golang-x-net git branch Andreas Henriksson ( at ah)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-44203/hoteldruid Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for hdf5 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-6375/poco Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: synchronize triage of clickhouse CVEs Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] LTS: synchronize triage of clickhouse CVEs Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: add freeradius to dla-needed.txt Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Track complete fix for CVE-2025-49176 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] gdk-pixbuf DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new gitlab issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Revert "LTS: remove <not-affected> from CVE-2025-40775/bind9, also add bind9 to dla-needed.txt" Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new nokogiri issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new tidy-html5 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6494/ruby-nokogiri Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4224-1 for node-send Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4225-1 for gdk-pixbuf Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4226-1 for dns-root-data Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] LTS: claim nvidia-graphics-drivers in dla-needed.txt Tobias Frost ( at tobi)
[Git][security-tracker-team/security-tracker][master] trixie triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] 2 commits: DLA-4226-1: update description Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for xorg-server update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] CVE-2020-36309/nginx,libnginx-mod-http-lua: add context Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for tidy-html5 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for ruby-nokogiri issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Remove notes from CVE-2025-2901 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new node-pbkdf2 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6516/hdf5 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52968/xdg-utils Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52969/clickhouse Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52936/sslh Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new codemirror-js issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] LTS: claim commons-beanutils in dla-needed.txt Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new tarantool issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52560/kanboard Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new llama.cpp issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4227-1 for dcmtk Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] new firefox issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new firefox-esr issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] dla-needed Bastien Roucariès ( at rouca)
[Git][security-tracker-team/security-tracker][master] Update status for CVE-2024-53427/jq Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4228-1 for nginx Sylvain Beucler ( at beuc)
[Git][security-tracker-team/security-tracker][master] Add Debian bug references for node-pbkdf2 issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: drop glewlwyd, only affected by one postponed CVE Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] LTS: fix package order in dla-needed.txt Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] ATS DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] LTS: triage CVE-2024-36275/ipmctl as <postponed> for bullseye Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Unify NFU for CVE-2025-47943 and add one more NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process one NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add new chromium issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add chromium to dsa-needed list Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-52936/sslh Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add initial tracking of two new guix issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add additional information for guix issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add additional information to CVE-2025-4641{5,6} and CVE-2025-5299{1,2,3} Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process one NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-53021/moodle Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add initial tracking for libssh issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reference upstream commits for libssh issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6032/podman Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track firefox issues fixed via unstable (for mfsa2025-51) Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Track fixed for firefox-esr fixes for mfsa2025-53 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-3415/grafana Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] lts: take firefox-esr Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add reference patch for CVE-2025-48734 Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4229-1 for commons-beanutils Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] Use upstream tag information for CVE-2025-48734 commit reference Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] LTS: claim libpgjava in dla-needed.txt Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add commit reference from the 1.x branch itself Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for Umbraco Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] 2 commits: lts: CVE-2025-6375/poco postponed on bullseye Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4230-1 for xorg-server Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add TeamViewer Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] lts: CVE-2025-49177/xorg-server n/a on bullseye Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] Track fixed version for two freeipa issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Use again the upstream tag Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] new gitlab issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] add product-based rule for Nvidia Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add rule for Zephyr Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] LTS: update notes on freeradius Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] additional fixing commit for CVE-2024-52046/mina2 Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] LTS: sync triage of CVE-2024-52046 and drop mina2 from dla-needed.txt (only 2 postponed CVEs) Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] LTS: update nagvis notes Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] Reserve DSA for libxml2 Aron Xu ( at aron)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6442/ruby-webrick Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52999/jackson-core Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two openbao issues, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add two new incus issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52576/kanboard Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] firefox-esr DSA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for guix issues Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] The channelbinding option was introduced in version 42.7.4 Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: remove libpgjava Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] LTS: claim freeradius in dla-needed.txt Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4231-1 for firefox-esr Emilio Pozuelo Monfort ( at pochu)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add description based rule for PDF-XChange Editor NFU Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Expand rule for PDF-Xchange to catch as well the viewer Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] chromium fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] add p0 reference for one Linux issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4232-1 for freeradius Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] LTS: claim nextcloud-desktop in dla-needed.txt Abhijith PA ( at abhijith)
[Git][security-tracker-team/security-tracker][master] Track fix for CVE-2025-6020 via experimental Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Fixup NFU entry generation for PDF-XChange products Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add reference for old CVE-2013-1424 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add reference for CVE-2014-7210/pdns Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] 2 commits: erlang spu updated with a second CVE fix Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Add Canon_EMEA Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52887/cpp-httplib Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-52999/jackson-core Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2025-52566 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for xwayland Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-4437/cri-o, itp'ed Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-52555/ceph Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-5731 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] llama.cpp fixed in sid Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new cloud-init issues Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Extend rule for Trellix Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] automatic update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] automatic NOT-FOR-US entries update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process some NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6750/hdf5 Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Process more NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] puppetserver n/a Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFUs Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] berkeley-abc non issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] pcl n/a Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] new spytrap-adb issue Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] mark CVE-2024-36353 as NFU Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] NFU Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] bookworm triage Moritz Muehlenhoff ( at jmm)
[Git][security-tracker-team/security-tracker][master] chromium dsa Andres Salomon ( at dilinger)
[Git][security-tracker-team/security-tracker][master] LTS: add NOTE for systemd in dla-needed.txt Carlos Henrique Lima Melara ( at charles)
[Git][security-tracker-team/security-tracker][master] Add note regarding nvidia-graphics-drivers. Tobias Frost ( at tobi)
[Git][security-tracker-team/security-tracker][master] LTS: claim mediawiki in dla-needed.txt Guilhem Moulin ( at guilhem)
[Git][security-tracker-team/security-tracker][master] LTS: claim nagvis in dla-needed.txt Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4233-1 for nagvis Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Add comments about PU state for nagvis Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Expand rule for code-projects NFUs Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] auto-nfu: Expand rule for code-projects by another variant Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Add ffmpeg to dla-needed.txt Santiago R.R. ( at santiago)
[Git][security-tracker-team/security-tracker][master] dla: take ffmpeg Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for catdoc update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Status update on u-boot Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Unclaim ruby-graphql Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Add some notes about mimetex Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Update note in dla-needed.txt Guilhem Moulin ( at guilhem)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4234-1 for catdoc Adrian Bunk ( at bunk)
[Git][security-tracker-team/security-tracker][master] add sudo Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] Reserve DSA number for sudo update Salvatore Bonaccorso ( at carnil)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4235-1 for sudo Thorsten Alteholz ( at alteholz)
[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] LTS: CVE-2025-46653/node-formidable triage (following bookworm triage) Roberto C. Sánchez ( at roberto)
[Git][security-tracker-team/security-tracker][master] LTS: claim pytorch in dla-needed.txt Daniel Leidert ( at dleidert)
[Git][security-tracker-team/security-tracker][master] Reserve DLA-4236-1 for mbedtls Andrej Shadura ( at andrewsh)
[Git][security-tracker-team/security-tracker][master] LTS: drop odoo, EOL was 2025-05-07 Roberto C. Sánchez ( at roberto)

Last message date: Mon Jun 30 22:59:20 BST 2025
Archived on: Mon Jun 30 22:59:24 BST 2025

Messages sorted by: [ thread ] [ subject ] [ author ]
More info on this list...

This archive was generated by Pipermail 0.09 (Mailman edition).