Bug#685828: reportbug: package version can't be left blank

On Tue, 22 Dec 2020, 14:02 Nis Martensen, wrote: > > I'm guessing that you used the GTK ui since it is the only reportbug ui > that does not allow editing the entire message body in the built-in > editor. Since recently this UI now does allow editing the pseudoheaders > in the editor, enabling

Bug#930662: libauth-googleauth-perl: poor source of entropy for secret generation

SHOULDs, Auth::GoogleAuth should use a CSPRNG like urandom as a source to generate the key, and possibly generate a 20-bytes key to follow a second SHOULD. Cheers, -- Raphael Geissert - Debian Developer www.debian.org

Bug#930660: libapache-sessionx-perl: poor source of entropy for session id generation

be a good time to update the way the id is generated. The details are in the oss-sec thread. [1] https://www.openwall.com/lists/oss-security/2019/06/15/1 Cheers, -- Raphael Geissert - Debian Developer www.debian.org

Bug#930659: libapache-session-perl: poor source of entropy for session id generation

be a good time to update the way the id is generated. The details are in the oss-sec thread. [1] https://www.openwall.com/lists/oss-security/2019/06/15/1 Cheers, -- Raphael Geissert - Debian Developer www.debian.org

Bug#920283: openldap: include argon2 hashing contrib module

://www.openldap.org/its/index.cgi/?findid=8575 [2]ftp://ftp.openldap.org/incoming/simon-levermann-170126.patch Cheers, -- Raphael Geissert - Debian Developer www.debian.org

Bug#505857: lintian: false positive debian-watch-file-should-mangle-version

g actually split uscan into a module - only checkbashisms. Last time I looked at the code it seemed straight forward to at least split the watch file parsing, the target download and parsing by watch file version, and the version mangling stuff. If that's still the case, perhaps it could be a very first version

Bug#505857: lintian: false positive debian-watch-file-should-mangle-version

g actually split uscan into a module - only checkbashisms. Last time I looked at the code it seemed straight forward to at least split the watch file parsing, the target download and parsing by watch file version, and the version mangling stuff. If that's still the case, perhaps it could be a very first version

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: NFU

Raphael Geissert pushed to branch master at Debian Security Tracker / security-tracker Commits: 3e19fa1a by Raphael Geissert at 2018-01-01T21:43:34+01:00 NFU - - - - - abfe56f4 by Raphael Geissert at 2018-01-01T21:46:23+01:00 One issue possibly affecting ffmpeg, or x265 - - - - - 1 changed

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] One NFU

Raphael Geissert pushed to branch master at Debian Security Tracker / security-tracker Commits: ace9803d by Raphael Geissert at 2017-12-31T12:15:30+01:00 One NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Strip trailing white spaces

Raphael Geissert pushed to branch master at Debian Security Tracker / security-tracker Commits: ebeafb2f by Raphael Geissert at 2017-12-30T15:30:36+01:00 Strip trailing white spaces - - - - - e0beae7d by Raphael Geissert at 2017-12-30T15:30:37+01:00 auto NFUs - - - - - 2 changed files

[Secure-testing-commits] r58915 - data/CVE

Author: geissert Date: 2017-12-25 20:34:23 + (Mon, 25 Dec 2017) New Revision: 58915 Modified: data/CVE/list Log: Whitespace cleanup in NFU entries Modified: data/CVE/list === --- data/CVE/list 2017-12-25 18:41:45 UTC

[Secure-testing-commits] r58884 - data/CVE

Author: geissert Date: 2017-12-24 08:39:29 + (Sun, 24 Dec 2017) New Revision: 58884 Modified: data/CVE/list Log: i2pd itp Modified: data/CVE/list === --- data/CVE/list 2017-12-24 08:05:19 UTC (rev 58883) +++

[Secure-testing-commits] r58789 - data/CVE

Author: geissert Date: 2017-12-21 12:29:15 + (Thu, 21 Dec 2017) New Revision: 58789 Modified: data/CVE/list Log: more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:27:39 UTC (rev 58788) +++

[Secure-testing-commits] r58787 - bin data/CVE

Author: geissert Date: 2017-12-21 12:25:34 + (Thu, 21 Dec 2017) New Revision: 58787 Modified: bin/check-new-issues data/CVE/list Log: more auto NFUs Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r58785 - bin data/CVE

Author: geissert Date: 2017-12-21 12:20:34 + (Thu, 21 Dec 2017) New Revision: 58785 Modified: bin/check-new-issues data/CVE/list Log: Trend Micro auto NFU Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r58784 - bin data/CVE

Author: geissert Date: 2017-12-21 12:19:15 + (Thu, 21 Dec 2017) New Revision: 58784 Modified: bin/check-new-issues data/CVE/list Log: one more IBM NFU Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r58783 - bin data/CVE

Author: geissert Date: 2017-12-21 12:15:02 + (Thu, 21 Dec 2017) New Revision: 58783 Modified: bin/check-new-issues data/CVE/list Log: EMC auto NFU issues and rule Modified: bin/check-new-issues === ---

[Secure-testing-commits] r58782 - data/CVE

Author: geissert Date: 2017-12-21 12:13:22 + (Thu, 21 Dec 2017) New Revision: 58782 Modified: data/CVE/list Log: vlc Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:10:28 UTC (rev 58781) +++ data/CVE/list

[Secure-testing-commits] r58780 - bin

Author: geissert Date: 2017-12-21 12:09:32 + (Thu, 21 Dec 2017) New Revision: 58780 Modified: bin/check-new-issues Log: more auto NFUs rules Modified: bin/check-new-issues === --- bin/check-new-issues2017-12-21

[Secure-testing-commits] r58779 - data/CVE

Author: geissert Date: 2017-12-21 12:08:57 + (Thu, 21 Dec 2017) New Revision: 58779 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 12:01:22 UTC (rev 58778) +++

[Secure-testing-commits] r58778 - bin

Author: geissert Date: 2017-12-21 12:01:22 + (Thu, 21 Dec 2017) New Revision: 58778 Modified: bin/check-new-issues Log: check-new-issues: add -b, to auto process entries Modified: bin/check-new-issues === ---

[Secure-testing-commits] r58777 - data/CVE

Author: geissert Date: 2017-12-21 12:00:07 + (Thu, 21 Dec 2017) New Revision: 58777 Modified: data/CVE/list Log: more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 11:53:24 UTC (rev 58776) +++

[Secure-testing-commits] r58775 - data/CVE

Author: geissert Date: 2017-12-21 11:49:15 + (Thu, 21 Dec 2017) New Revision: 58775 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 11:40:21 UTC (rev 58774) +++

[Secure-testing-commits] r58774 - data/CVE

Author: geissert Date: 2017-12-21 11:40:21 + (Thu, 21 Dec 2017) New Revision: 58774 Modified: data/CVE/list Log: nasm, piwigo, git-lfs, and some NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 10:02:34

[Secure-testing-commits] r58768 - bin

Author: geissert Date: 2017-12-21 08:51:14 + (Thu, 21 Dec 2017) New Revision: 58768 Modified: bin/check-new-issues Log: remove an unused var and useless code Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r58767 - bin

Author: geissert Date: 2017-12-21 08:48:25 + (Thu, 21 Dec 2017) New Revision: 58767 Modified: bin/check-new-issues Log: add a few auto NFUs rules Modified: bin/check-new-issues === --- bin/check-new-issues2017-12-21

[Secure-testing-commits] r58766 - data/CVE

Author: geissert Date: 2017-12-21 08:47:39 + (Thu, 21 Dec 2017) New Revision: 58766 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-21 08:42:06 UTC (rev 58765) +++

[Secure-testing-commits] r58764 - data/CVE

Author: geissert Date: 2017-12-21 08:38:13 + (Thu, 21 Dec 2017) New Revision: 58764 Modified: data/CVE/list Log: more NFUs, one itp Modified: data/CVE/list === --- data/CVE/list 2017-12-21 08:07:55 UTC (rev 58763) +++

[Secure-testing-commits] r58754 - bin

Author: geissert Date: 2017-12-20 23:56:36 + (Wed, 20 Dec 2017) New Revision: 58754 Modified: bin/check-new-issues Log: add an auto NFU rule for the FS stuff Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r58753 - data/CVE

Author: geissert Date: 2017-12-20 23:54:58 + (Wed, 20 Dec 2017) New Revision: 58753 Modified: data/CVE/list Log: more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-20 23:52:13 UTC (rev 58752) +++

[Secure-testing-commits] r58752 - data/CVE

Author: geissert Date: 2017-12-20 23:52:13 + (Wed, 20 Dec 2017) New Revision: 58752 Modified: data/CVE/list Log: some more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-20 23:44:22 UTC (rev 58751) +++

[Secure-testing-commits] r58751 - data/CVE

Author: geissert Date: 2017-12-20 23:44:22 + (Wed, 20 Dec 2017) New Revision: 58751 Modified: data/CVE/list Log: more NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-20 23:35:22 UTC (rev 58750) +++

[Secure-testing-commits] r58750 - data/CVE

Author: geissert Date: 2017-12-20 23:35:22 + (Wed, 20 Dec 2017) New Revision: 58750 Modified: data/CVE/list Log: some NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-20 22:41:54 UTC (rev 58749) +++

[Secure-testing-commits] r58723 - data/CVE

Author: geissert Date: 2017-12-20 13:44:02 + (Wed, 20 Dec 2017) New Revision: 58723 Modified: data/CVE/list Log: NFUs, piwigo issues Modified: data/CVE/list === --- data/CVE/list 2017-12-20 13:33:30 UTC (rev 58722) +++

[Secure-testing-commits] r58724 - bin

Author: geissert Date: 2017-12-20 13:44:40 + (Wed, 20 Dec 2017) New Revision: 58724 Modified: bin/check-new-issues Log: Sort CVE issues numerically Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r58722 - data/CVE

Author: geissert Date: 2017-12-20 13:33:30 + (Wed, 20 Dec 2017) New Revision: 58722 Modified: data/CVE/list Log: auto NFUs Modified: data/CVE/list === --- data/CVE/list 2017-12-20 11:07:59 UTC (rev 58721) +++

Bug#878088: reportbug: please inform security and lts teams about security update regressions

Hi, On 6 Dec 2017 08:48, "Markus Koschany" wrote: I have updated the patch according to your suggestions. It's a bit strange that we can't match release numbers and code name already. I think it would be best to implement this feature somewhere else but for the sake of moving

[Reportbug-maint] Bug#878088: reportbug: please inform security and lts teams about security update regressions

Hi, On 6 Dec 2017 08:48, "Markus Koschany" wrote: I have updated the patch according to your suggestions. It's a bit strange that we can't match release numbers and code name already. I think it would be best to implement this feature somewhere else but for the sake of moving

[Reportbug-maint] Bug#878088: reportbug: please inform security and lts teams about security update regressions

it could also ask for confirmation, as in: "is the bug a recent regression?", and CC the corresponding team. For instance, there's no need to CC the security team for regressions by LTS updates. Cheers, -- Raphael Geissert - Debian Developer www

Bug#878088: reportbug: please inform security and lts teams about security update regressions

it could also ask for confirmation, as in: "is the bug a recent regression?", and CC the corresponding team. For instance, there's no need to CC the security team for regressions by LTS updates. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net

[Secure-testing-commits] r57787 - doc

Author: geissert Date: 2017-11-18 17:57:47 + (Sat, 18 Nov 2017) New Revision: 57787 Modified: doc/DSA.template Log: Add a link to the security tracker to the DSA template Modified: doc/DSA.template === --- doc/DSA.template

[Secure-testing-commits] r57157 - data/CVE

Author: geissert Date: 2017-10-31 12:16:28 + (Tue, 31 Oct 2017) New Revision: 57157 Modified: data/CVE/list Log: some NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-31 12:06:01 UTC (rev 57156) +++

[Secure-testing-commits] r57010 - data/CVE

Author: geissert Date: 2017-10-27 09:25:33 + (Fri, 27 Oct 2017) New Revision: 57010 Modified: data/CVE/list Log: glusterfs issue, NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-27 09:10:35 UTC (rev 57009)

[Secure-testing-commits] r56955 - bin

Author: geissert Date: 2017-10-25 07:23:56 + (Wed, 25 Oct 2017) New Revision: 56955 Modified: bin/check-new-issues Log: Make the wordpress auto_nfu work in another case Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56954 - bin

Author: geissert Date: 2017-10-25 07:23:06 + (Wed, 25 Oct 2017) New Revision: 56954 Modified: bin/check-new-issues Log: Make the description extractor work again Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r56953 - data/CVE

Author: geissert Date: 2017-10-25 07:20:42 + (Wed, 25 Oct 2017) New Revision: 56953 Modified: data/CVE/list Log: redis issue, some NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-25 06:49:51 UTC (rev 56952)

[Secure-testing-commits] r56952 - data/CVE

Author: geissert Date: 2017-10-25 06:49:51 + (Wed, 25 Oct 2017) New Revision: 56952 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2017-10-25 06:46:53 UTC (rev 56951) +++ data/CVE/list

[Secure-testing-commits] r56939 - data/CVE

Author: geissert Date: 2017-10-24 13:53:36 + (Tue, 24 Oct 2017) New Revision: 56939 Modified: data/CVE/list Log: apache2 issue concludes external check, probably RH-specific Modified: data/CVE/list === --- data/CVE/list

[Secure-testing-commits] r56935 - data/CVE

Author: geissert Date: 2017-10-24 09:13:30 + (Tue, 24 Oct 2017) New Revision: 56935 Modified: data/CVE/list Log: 2 apr issues, NFU Modified: data/CVE/list === --- data/CVE/list 2017-10-24 09:10:14 UTC (rev 56934) +++

[Secure-testing-commits] r56914 - data/CVE

Author: geissert Date: 2017-10-22 10:23:40 + (Sun, 22 Oct 2017) New Revision: 56914 Modified: data/CVE/list Log: spip issue Modified: data/CVE/list === --- data/CVE/list 2017-10-22 10:07:25 UTC (rev 56913) +++

[Secure-testing-commits] r56890 - data/CVE

Author: geissert Date: 2017-10-20 15:12:39 + (Fri, 20 Oct 2017) New Revision: 56890 Modified: data/CVE/list Log: NFUs, webmin Modified: data/CVE/list === --- data/CVE/list 2017-10-20 13:13:16 UTC (rev 56889) +++

[Secure-testing-commits] r56862 - data/CVE

Author: geissert Date: 2017-10-19 10:26:53 + (Thu, 19 Oct 2017) New Revision: 56862 Modified: data/CVE/list Log: web2py, openjpeg2, puppet, mistune, NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-19

[Secure-testing-commits] r56825 - bin

Author: geissert Date: 2017-10-18 15:13:49 + (Wed, 18 Oct 2017) New Revision: 56825 Modified: bin/check-new-issues Log: Add a command 'd' to display the information again Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56824 - bin

Author: geissert Date: 2017-10-18 15:03:44 + (Wed, 18 Oct 2017) New Revision: 56824 Modified: bin/check-new-issues Log: allow one to go to a specific issue (ex. .gCVE-2017-1234) Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56822 - bin

Author: geissert Date: 2017-10-18 14:45:39 + (Wed, 18 Oct 2017) New Revision: 56822 Modified: bin/check-new-issues Log: move the presenting/editing loop logic into its own function Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56821 - data/CVE

Author: geissert Date: 2017-10-18 14:07:19 + (Wed, 18 Oct 2017) New Revision: 56821 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-18 13:31:01 UTC (rev 56820) +++ data/CVE/list

[Secure-testing-commits] r56810 - bin

Author: geissert Date: 2017-10-18 09:17:45 + (Wed, 18 Oct 2017) New Revision: 56810 Modified: bin/check-new-issues Log: Cleanup the CVE text a bit Drops Status, Category and Current Votes fields Modified: bin/check-new-issues

[Secure-testing-commits] r56805 - data/CVE

Author: geissert Date: 2017-10-18 08:42:11 + (Wed, 18 Oct 2017) New Revision: 56805 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-18 07:46:54 UTC (rev 56804) +++ data/CVE/list

[Secure-testing-commits] r56744 - doc

Author: geissert Date: 2017-10-16 10:28:24 + (Mon, 16 Oct 2017) New Revision: 56744 Modified: doc/README.releases Log: add a task for the arch-specific packages files Modified: doc/README.releases === --- doc/README.releases

[Secure-testing-commits] r56743 - doc/security-team.d.o

Author: geissert Date: 2017-10-16 10:23:49 + (Mon, 16 Oct 2017) New Revision: 56743 Modified: doc/security-team.d.o/security_tracker Log: corrections related to CVE id requests and an obsolete note Modified: doc/security-team.d.o/security_tracker

[Secure-testing-commits] r56742 - data/CVE

Author: geissert Date: 2017-10-16 10:01:11 + (Mon, 16 Oct 2017) New Revision: 56742 Modified: data/CVE/list Log: NFUs, radare2 issue Modified: data/CVE/list === --- data/CVE/list 2017-10-16 09:32:21 UTC (rev 56741) +++

[Secure-testing-commits] r56675 - data/CVE

Author: geissert Date: 2017-10-13 11:04:14 + (Fri, 13 Oct 2017) New Revision: 56675 Modified: data/CVE/list Log: fix NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-13 10:54:58 UTC (rev 56674) +++

[Secure-testing-commits] r56674 - data/CVE

Author: geissert Date: 2017-10-13 10:54:58 + (Fri, 13 Oct 2017) New Revision: 56674 Modified: data/CVE/list Log: NFUs, wordpress issue Modified: data/CVE/list === --- data/CVE/list 2017-10-13 09:10:18 UTC (rev 56673)

[Secure-testing-commits] r56670 - bin

Author: geissert Date: 2017-10-12 22:02:19 + (Thu, 12 Oct 2017) New Revision: 56670 Modified: bin/check-new-issues Log: add completion for the pkg status Modified: bin/check-new-issues === --- bin/check-new-issues

[Secure-testing-commits] r56663 - bin

Author: geissert Date: 2017-10-12 19:58:56 + (Thu, 12 Oct 2017) New Revision: 56663 Modified: bin/check-new-issues Log: poor-man's pkg name completion only based on package names already seen in the list, at this time Modified: bin/check-new-issues

[Secure-testing-commits] r56660 - data/CVE

Author: geissert Date: 2017-10-12 19:19:42 + (Thu, 12 Oct 2017) New Revision: 56660 Modified: data/CVE/list Log: data normalisation Modified: data/CVE/list === --- data/CVE/list 2017-10-12 19:09:13 UTC (rev 56659) +++

[Secure-testing-commits] r56652 - bin

Author: geissert Date: 2017-10-12 16:08:52 + (Thu, 12 Oct 2017) New Revision: 56652 Modified: bin/check-new-issues Log: do not add useless blank spaces on completion Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56651 - bin

Author: geissert Date: 2017-10-12 16:05:44 + (Thu, 12 Oct 2017) New Revision: 56651 Modified: bin/check-new-issues Log: no need to account for blank spaces given that they are not tolerated Modified: bin/check-new-issues ===

[Secure-testing-commits] r56634 - bin

Author: geissert Date: 2017-10-12 07:16:13 + (Thu, 12 Oct 2017) New Revision: 56634 Modified: bin/check-new-issues Log: Also apply the display limit to wnpp results Searching for 'in', 'ip', and other generic queries doesn't make much sense, but let's fix one thing at the time.

External check

CVE-2017-12192: RESERVED CVE-2017-14695: RESERVED CVE-2017-14696: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

[Secure-testing-commits] r56608 - bin

Author: geissert Date: 2017-10-11 11:13:12 + (Wed, 11 Oct 2017) New Revision: 56608 Modified: bin/check-new-issues Log: Get rid of the "TODO: check" in case its an itp Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56607 - bin

Author: geissert Date: 2017-10-11 11:06:50 + (Wed, 11 Oct 2017) New Revision: 56607 Modified: bin/check-new-issues Log: Make '- sth' work even without "TODO: check" entries Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56606 - bin

Author: geissert Date: 2017-10-11 11:02:45 + (Wed, 11 Oct 2017) New Revision: 56606 Modified: bin/check-new-issues Log: Use sensible-editor instead of handling the env vars ourselves Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56605 - bin

Author: geissert Date: 2017-10-11 10:59:16 + (Wed, 11 Oct 2017) New Revision: 56605 Modified: bin/check-new-issues Log: add auto wnpp results as readline history entries Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56604 - bin

Author: geissert Date: 2017-10-11 10:11:09 + (Wed, 11 Oct 2017) New Revision: 56604 Modified: bin/check-new-issues Log: Add command completion Modified: bin/check-new-issues === --- bin/check-new-issues2017-10-11

[Secure-testing-commits] r56594 - data/CVE

Author: geissert Date: 2017-10-11 08:04:41 + (Wed, 11 Oct 2017) New Revision: 56594 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2017-10-11 07:34:41 UTC (rev 56593) +++ data/CVE/list

[Secure-testing-commits] r56567 - data/CVE

Author: geissert Date: 2017-10-10 09:19:27 + (Tue, 10 Oct 2017) New Revision: 56567 Modified: data/CVE/list Log: kanboard and shaarli issues, NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-10 09:10:15 UTC

DSA candidates

botan1.10 -- bzr -- cacti -- exiv2 -- jackson-databind -- jasperreports -- lame -- libidn -- liblouis -- libofx -- libraw -- libvorbis -- opencv -- openexr -- otrs2 -- rtpproxy -- sssd -- tomcat8 -- unrar-free -- golang-1.7/stable -- golang-1.8/stable -- koji/stable -- ruby2.3/stable --

External check

CVE-2014-8184: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

[Secure-testing-commits] r56536 - data/CVE

Author: geissert Date: 2017-10-09 09:36:07 + (Mon, 09 Oct 2017) New Revision: 56536 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-09 09:15:14 UTC (rev 56535) +++ data/CVE/list

[Secure-testing-commits] r56527 - data/CVE

Author: geissert Date: 2017-10-08 18:15:23 + (Sun, 08 Oct 2017) New Revision: 56527 Modified: data/CVE/list Log: NFU Modified: data/CVE/list === --- data/CVE/list 2017-10-08 17:50:26 UTC (rev 56526) +++ data/CVE/list

External check

CVE-2017-4995: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

External check

CVE-2017-4995: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

[Secure-testing-commits] r56452 - data

Author: geissert Date: 2017-10-06 10:16:03 + (Fri, 06 Oct 2017) New Revision: 56452 Modified: data/embedded-code-copies Log: mp3gain was removed for jessie Modified: data/embedded-code-copies === ---

[Secure-testing-commits] r56448 - data/CVE

Author: geissert Date: 2017-10-06 09:20:42 + (Fri, 06 Oct 2017) New Revision: 56448 Modified: data/CVE/list Log: redis, upx and lame issues, NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-06 09:10:13 UTC

External check

CVE-2017-12149: TODO: check, maybe in jbossas4 CVE-2017-12175: RESERVED CVE-2017-14868: RESERVED CVE-2017-15038: RESERVED CVE-2017-15041: missing from list CVE-2017-15042: missing from list -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the

[Secure-testing-commits] r56426 - bin

Author: geissert Date: 2017-10-05 10:31:07 + (Thu, 05 Oct 2017) New Revision: 56426 Modified: bin/check-new-issues Log: Cache the latest apt-cache results to speed things up Modified: bin/check-new-issues === ---

DSA candidates

botan1.10 -- bzr -- exiv2 -- jackson-databind -- libidn -- libofx -- libraw -- libvorbis -- nss -- opencv -- openexr -- otrs2 -- rtpproxy -- unrar-free -- ffmpeg/stable -- libbson/stable -- qemu/stable -- ruby2.3/stable -- yadifa/stable -- chromium-browser/oldstable -- php-horde-crypt/oldstable --

[Secure-testing-commits] r56350 - data/CVE

Author: geissert Date: 2017-10-02 14:30:05 + (Mon, 02 Oct 2017) New Revision: 56350 Modified: data/CVE/list Log: add dnsmasq issues Modified: data/CVE/list === --- data/CVE/list 2017-10-02 13:15:26 UTC (rev 56349) +++

[Secure-testing-commits] r56344 - bin

Author: geissert Date: 2017-10-02 10:37:11 + (Mon, 02 Oct 2017) New Revision: 56344 Modified: bin/check-new-issues Log: Add -D option to skip the downloads Useful when invoking check-new-issues multiple times Modified: bin/check-new-issues

[Secure-testing-commits] r56343 - bin

Author: geissert Date: 2017-10-02 10:27:08 + (Mon, 02 Oct 2017) New Revision: 56343 Modified: bin/check-new-issues Log: Allow an entry to be added directly by typing '- package[...]' Modified: bin/check-new-issues === ---

[Secure-testing-commits] r56341 - data/CVE

Author: geissert Date: 2017-10-02 10:09:34 + (Mon, 02 Oct 2017) New Revision: 56341 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-10-02 10:08:39 UTC (rev 56340) +++ data/CVE/list

External check

CVE-2017-2582: RESERVED CVE-2017-7536: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

DSA candidates

asterisk -- bareos -- bzr -- dolibarr -- exiv2 -- jackson-databind -- libarchive -- libidn -- libofx -- libraw -- libsndfile -- libvorbis -- nautilus -- opencv -- openexr -- otrs2 -- rtpproxy -- unrar-free -- golang-github-go-ldap-ldap/stable -- libbson/stable -- qemu/stable -- ruby2.3/stable --

External check

CVE-2017-7550: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

External check

CVE-2017-8039: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

External check

CVE-2017-8045: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

External check

CVE-2017-12148: RESERVED CVE-2017-12155: RESERVED CVE-2017-12168: RESERVED CVE-2017-12170: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the

External check

CVE-2017-7552: RESERVED CVE-2017-7553: RESERVED CVE-2017-7554: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

External check

CVE-2017-10784: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the script was run.

  1   2   3   4   5   6   7   8   9   10   >