Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b015aba5 by Salvatore Bonaccorso at 2018-12-28T07:20:22Z
Add todo item for CVE-2018-20185
It is not yet clear if this is a false positive or the issue is
completely fixed with the mentioned
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b723ea9a by Salvatore Bonaccorso at 2018-12-28T06:51:51Z
graphicsmagick: Add note on partial fix only according to maintainer
- - - - -
1 changed file:
- data/CVE/list
Changes:
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9f5f50e3 by Markus Koschany at 2018-12-27T21:33:03Z
CVE-2018-20482,tar: Link to fixing commit
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
77f5f757 by Moritz Muehlenhoff at 2018-12-27T21:25:00Z
Update status for gm
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
75a5708d by Markus Koschany at 2018-12-27T21:19:39Z
CVE-2018-20481,poppler: Mark as postponed for Jessie
This issue can be fixed later when the patch was officially accepted and other,
more important
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b4f7c3a1 by Moritz Muehlenhoff at 2018-12-27T21:16:43Z
ocsinventory-server fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
-needed.txt
=
@@ -47,6 +47,12 @@ freerdp (Mike Gabriel)
--
gnutls28
--
+imagemagick
+ NOTE: 20181227: We should address the many open issues in imagemagick either
+ NOTE: by patching them separetely as we did in Wheezy or by updating to a
+ NOTE: new upstream
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c8c17839 by Markus Koschany at 2018-12-27T20:52:33Z
CVE-2018-20217,krb5: No-dsa for Jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c10db511 by Salvatore Bonaccorso at 2018-12-27T20:51:45Z
Add fixed version for four libraw CVEs in unstable via new upstream verison
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8f5e6a09 by Salvatore Bonaccorso at 2018-12-27T20:37:52Z
Mark CVE-2018-20433/c3p0 as no-dsa for stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e19f8b85 by Salvatore Bonaccorso at 2018-12-27T20:26:59Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e256cd3 by Markus Koschany at 2018-12-27T20:24:39Z
CVE-2018-1000871,hoteldruid: Mark as no-dsa for Jessie.
Minor issue according to the maintainer.
- - - - -
1 changed file:
- data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e575ebae by Salvatore Bonaccorso at 2018-12-27T20:14:03Z
CVE-2018-20483/wget fixed in unstable with new upstream version upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
371131a2 by security tracker role at 2018-12-27T20:10:22Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
32eda1ab by Salvatore Bonaccorso at 2018-12-27T20:08:39Z
CVE-2018-2043{0,1}/libextractor fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
07d0cf5b by Salvatore Bonaccorso at 2018-12-27T20:04:36Z
Sort jessie tagged entries into source package group for consistent style
- - - - -
1 changed file:
- data/CVE/list
Changes:
/dla-needed.txt
=
@@ -96,7 +96,7 @@ pdns-recursor (Abhijith PA)
NOTE: 20181203: Affected by same vulnerability as pdns
NOTE: 20181227: https://lists.debian.org/debian-lts/2018/12/msg00101.html.
(abhijith)
--
-phpmyadmin
+phpmyadmin (Lucas Kanashiro
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0110f9c8 by Markus Koschany at 2018-12-27T17:23:17Z
CVE-2018-20461,radare2: Jessie is not affected.
The vulnerable code is not present. The POC triggers no crash without ASAN.
- - - - -
904f28e9 by
=
@@ -90,9 +90,11 @@ openjpeg2
--
pdns (Abhijith PA)
NOTE: 20181203: Upstream fix contain C++11 standard code. Ported one patch.
One more left
+ NOTE: 20181227: https://lists.debian.org/debian-lts/2018/12/msg00101.html.
(abhijith)
--
pdns-recursor
Abhijith PA pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d498eb11 by Abhijith PA at 2018-12-27T16:48:20Z
Reserve DLA-1591-2 for libphp-phpmailer
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
93deac58 by Moritz Muehlenhoff at 2018-12-27T16:28:57Z
libarchive DSA
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
da0c9b0c by Salvatore Bonaccorso at 2018-12-27T16:23:05Z
Add CVE-2018-20511/linux
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7519a8d8 by Salvatore Bonaccorso at 2018-12-27T15:47:57Z
Add Debian bug reference for CVE-2018-19758/libsndfile
- - - - -
1 changed file:
- data/CVE/list
Changes:
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8e5250be by Moritz Muehlenhoff at 2018-12-27T14:52:55Z
wireshark DSA
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
Lucas Kanashiro pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c0988b1e by Lucas Kanashiro at 2018-12-27T14:29:14Z
Reserve DLA-1620-1 for ghostscript
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Hugo Lefeuvre pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c442500f by Hugo Lefeuvre at 2018-12-27T14:09:54Z
add link to upstream bug tracker for CVE-2018-19758
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6c36000f by Salvatore Bonaccorso at 2018-12-27T13:38:44Z
Add Debian bug references for CVE-2018-1935{1,2}: #917408, #917409
- - - - -
1 changed file:
- data/CVE/list
Changes:
Hugo Lefeuvre pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9738e111 by Hugo Lefeuvre at 2018-12-27T13:28:46Z
Reserve DLA-1619-1 for graphicsmagick
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f91bed7d by Salvatore Bonaccorso at 2018-12-27T12:08:23Z
Reserve DSA number for ruby-sanitize update
- - - - -
1 changed file:
- data/DSA/list
Changes:
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e707d541 by Moritz Muehlenhoff at 2018-12-27T11:03:52Z
stretch triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4f32b4fd by Salvatore Bonaccorso at 2018-12-27T08:15:42Z
Process two NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6907716c by security tracker role at 2018-12-27T08:10:18Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
32 matches
Mail list logo