The problem with security newsletters and newsletters on the security center

2024-05-08 Thread Тимур Казбеков 
Hi!
We noticed that you have discrepancies in the mailing list and the
information provided on https://security-tracker.debian.org/tracker/
Example:
DSA-5248-1 link to the message
https://www.debian.org/security/2022/dsa-5248?ref=cve.news redirect to DSA
5246-1, but there is https://security-tracker.debian.org/tracker/DSA-5248-1 on
the tracker, and unfortunately it is not clear why it overwrites the DSA
5246-1 in the mailing list, although they are completely different.
Here is a list of newsletters where there is a discrepancy between the
tracker and the newsletter:
DSA-5248-1 php-twig -- security update
DSA-4986-1 tomcat9 -- security update
DSA-4727-1 tomcat9 -- security update
DSA-4342-1 chromium-browser -- security update
DSA-3941-1 iortcw -- security update
DSA-3931-1 ruby-rack-cors -- security update
DSA-3768-1 openjpeg2 -- security update
DSA-3529-1 redmine -- security update
DSA-3525-1 pixman -- security update
DSA-3383-1 wordpress -- security update
DSA-3265-1 zendframework -- security update
DSA-3249-1 jqueryui -- security update
DLA-3177-1 python-django -- LTS security update
DLA-2941-1 linux-4.19 -- LTS security update
DLA-2887-1 lighttpd -- LTS security update
DLA-2785-1 linux-4.19 -- LTS security update
DLA-2714-1 linux-4.19 -- LTS security update
DLA-2690-1 linux-4.19 -- LTS security update
DLA-2652-1 unbound1.9 -- LTS security update
DLA-2610-1 linux-4.19 -- LTS security update
DLA-2594-1 tomcat8 -- LTS security update
DLA-2557-1 linux-4.19 -- LTS security update
DLA-2556-1 unbound1.9 -- LTS security update
DLA-2483-1 linux-4.19 -- LTS security update
DLA-2417-1 linux-4.19 -- LTS security update
DLA-2385-1 linux-4.19 -- LTS security update
DLA-2323-1 linux-4.19 -- LTS new package
DLA-2066-1 gthumb -- LTS security update
DLA-1709-1 waagent -- LTS security update
DLA-1543-1 gnulib -- LTS security update
DLA-1541-1 jekyll -- LTS security update
DLA-1540-1 net-snmp -- LTS security update
DLA-1539-1 samba -- LTS security update
DLA-1538-1 tinc -- LTS security update
DLA-1537-1 php-horde-kronolith -- LTS security update
DLA-1536-1 php-horde-core -- LTS security update
DLA-1535-1 php-horde -- LTS security update
DLA-1533-1 git -- LTS security update

Could you tell us or improve the experience of using newsletters?

External check

2024-05-08 Thread Security Tracker 
CVE-2023-27349: TODO: check
CVE-2023-44431: TODO: check
CVE-2023-50229: TODO: check
CVE-2023-50230: TODO: check
CVE-2023-51580: TODO: check
CVE-2023-51589: TODO: check
CVE-2023-51592: TODO: check
CVE-2023-51594: TODO: check
CVE-2023-51596: TODO: check
CVE-2024-2410: TODO: check
CVE-2024-4436: missing from list
CVE-2024-4437: missing from list
CVE-2024-4438: missing from list
--
The output might be a bit terse, but the above ids are known elsewhere,
check the references in the tracker. The second part indicates the status
of that id in the tracker at the moment the script was run.