On Wed, 12 Jun 2019 17:07:11 +0200 Ivo De Decker wrote:
> As the security team considers this an issue that needs to be fixed for
> buster, I'm increasing the severity. Please do not downgrade it again.
Thanks for "help", security team.
> Note that the revert Paul mentioned in #930313
I don't u
Control: severity -1 serious
Hi,
On Sun, Jun 09, 2019 at 01:44:18PM +0200, Salvatore Bonaccorso wrote:
> On Sun, Jun 09, 2019 at 01:14:57PM +0300, Sergey B Kirpichev wrote:
> > On Sun, Jun 09, 2019 at 12:08:21PM +0200, Salvatore Bonaccorso wrote:
> > > After some time passed, on 2019-06-03, anoth
On Sun, Jun 09, 2019 at 01:44:18PM +0200, Salvatore Bonaccorso wrote:
> I gave a reason though now in my previous mail
I was expecting such explanation before changing in severity...
> > > Could you please work out with the Release team via an unblock request
> > > if they would wave through the
Hi Sergey,
On Sun, Jun 09, 2019 at 01:14:57PM +0300, Sergey B Kirpichev wrote:
> On Sun, Jun 09, 2019 at 12:08:21PM +0200, Salvatore Bonaccorso wrote:
> > After some time passed, on 2019-06-03, another Debian security team
> > member (Moritz Muehlenhoff ) raised the severity to a
> > release criti
On Sun, Jun 09, 2019 at 12:08:21PM +0200, Salvatore Bonaccorso wrote:
> After some time passed, on 2019-06-03, another Debian security team
> member (Moritz Muehlenhoff ) raised the severity to a
> release critical value.
For no reasons.
> Could you please work out with the Release team via an un
Hi Sergey,
On Sun, Jun 09, 2019 at 10:59:06AM +0300, Sergey B Kirpichev wrote:
> severity 927775 important
> thanks
>
> No reasons, so revert back severity.
This is from my point of view not okay, and I will try to explain, why
I think so.
I filled the bug on 2019-04-23 with severity important
severity 927775 important
thanks
No reasons, so revert back severity.
On Tue, 4 Jun 2019 08:00:43 +0300 Sergey B Kirpichev
wrote:
> On Tue, 23 Apr 2019 06:53:03 +0200 Salvatore Bonaccorso
> wrote:
> > CVE-2019-11454[0]:
> > | Persistent cross-site scripting (XSS) in http/cervlet.c in Tildesla
On Tue, 23 Apr 2019 06:53:03 +0200 Salvatore Bonaccorso
wrote:
> CVE-2019-11454[0]:
> | Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash
> | Monit before 5.25.3 allows a remote unauthenticated attacker to
> | introduce arbitrary JavaScript via manipulation of an unsanitized u
Source: monit
Version: 1:5.25.2-3
Severity: important
Tags: security upstream
Control: found -1 1:5.20.0-6
Hi,
The following vulnerabilities were published for monit.
CVE-2019-11454[0]:
| Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash
| Monit before 5.25.3 allows a remote
9 matches
Mail list logo