[Git][security-tracker-team/security-tracker][master] Add CVE-2023-30079 and CVE-2023-30078

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 30e6b175 by Salvatore Bonaccorso at 2023-08-23T07:27:59+02:00 Add CVE-2023-30079 and CVE-2023-30078 Notified MITRE that they are duplicates of the already assigned CVE-2023-22652 and

[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48541/imagemagick

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: dce597d2 by Salvatore Bonaccorso at 2023-08-23T07:19:25+02:00 Add CVE-2022-48541/imagemagick - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Oh no, use apo instead of my real name

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 210d6e1e by Markus Koschany at 2023-08-23T01:03:55+02:00 Oh no, use apo instead of my real name First, before Salvatore. haha - - - - - 1 changed file: - data/dsa-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] 3 commits: Claim libreswan in dla-needed.txt

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: d0d05fb0 by Markus Koschany at 2023-08-23T01:01:29+02:00 Claim libreswan in dla-needed.txt - - - - - ca3fef13 by Markus Koschany at 2023-08-23T01:01:29+02:00 Claim aom in dsa-needed.txt - - - - -

[Git][security-tracker-team/security-tracker][master] LTS: re-add qt4-x11, which still has an open CVE

: = data/dla-needed.txt = @@ -152,6 +152,10 @@ python-os-brick qpdf (Thorsten Alteholz) NOTE: 20230820: Added by Front-Desk (ta) -- +qt4-x11 + NOTE: 20230822: Re-added for one remaining open CVE (roberto) + NOTE: 20230822: CVE-2021-28025 maybe

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3540-1 for mediawiki

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 9ea952c3 by Markus Koschany at 2023-08-23T00:54:42+02:00 Reserve DLA-3540-1 for mediawiki - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3539-1 for qt4-x11

: 20230822: New CVEs have been reported (roberto) --- rails (utkarsh) NOTE: 20220909: Re-added due to regression (abhijith) NOTE: 20220909: Regression on 2:5.2.2.1+dfsg-1+deb10u4 (abhijith) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit

[Git][security-tracker-team/security-tracker][master] Add initial information on three new nasm issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 753b4ea0 by Salvatore Bonaccorso at 2023-08-22T23:03:03+02:00 Add initial information on three new nasm issues - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Process one NFU

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f49e3d86 by Salvatore Bonaccorso at 2023-08-22T23:02:31+02:00 Process one NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48554/file

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 24205908 by Salvatore Bonaccorso at 2023-08-22T22:50:33+02:00 Add CVE-2022-48554/file - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48570/libcrypto++

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f7c70bcb by Salvatore Bonaccorso at 2023-08-22T22:49:38+02:00 Add CVE-2022-48570/libcrypto++ - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fd630e22 by Salvatore Bonaccorso at 2023-08-22T22:49:04+02:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add CVE-2022-48571/memcached

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 228b14ec by Salvatore Bonaccorso at 2023-08-22T22:37:03+02:00 Add CVE-2022-48571/memcached - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 02e60846 by Salvatore Bonaccorso at 2023-08-22T22:28:25+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add upstream commit references for faad2 issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 96cf245d by Salvatore Bonaccorso at 2023-08-22T22:22:39+02:00 Add upstream commit references for faad2 issues - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add tracking bug for CVE-2022-48579

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 58c39e91 by Salvatore Bonaccorso at 2023-08-22T22:20:59+02:00 Add tracking bug for CVE-2022-48579 - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Process one NFU

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 16effc60 by Salvatore Bonaccorso at 2023-08-22T22:17:40+02:00 Process one NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] 2 commits: Revert "Remove CVE-2023-39949 from listin in DSA-5481-1"

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 568e169c by Salvatore Bonaccorso at 2023-08-22T22:13:18+02:00 Revert Remove CVE-2023-39949 from listin in DSA-5481-1 This reverts commit 4411a23b85d68ddd4417958b2297eb892788420f. The fix was

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 039f20e7 by security tracker role at 2023-08-22T20:12:18+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Annoatate status for libreswan

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a0f00ad2 by Salvatore Bonaccorso at 2023-08-22T22:01:42+02:00 Annoatate status for libreswan - - - - - 1 changed file: - data/dsa-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-37154

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 47fa8dfd by Salvatore Bonaccorso at 2023-08-22T21:59:21+02:00 Add CVE-2023-37154 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add information on CVE-2020-27418

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 73b11e9f by Salvatore Bonaccorso at 2023-08-22T21:39:19+02:00 Add information on CVE-2020-27418 - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add Debian bug references for rust{,-rustls}-webpki

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a19a9dfb by Salvatore Bonaccorso at 2023-08-22T21:10:18+02:00 Add Debian bug references for rust{,-rustls}-webpki - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-38961

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fc46a4bd by Salvatore Bonaccorso at 2023-08-22T20:45:05+02:00 Add CVE-2023-38961 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-1108 and CVE-2022-4492

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 548b53dc by Salvatore Bonaccorso at 2023-08-22T17:57:34+02:00 Update information on CVE-2023-1108 and CVE-2022-4492 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Annoate tag for fixing commit for CVE-2022-2962

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a84ec1d8 by Salvatore Bonaccorso at 2023-08-22T17:51:35+02:00 Annoate tag for fixing commit for CVE-2022-2962 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2023-38197: add security blog article link

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker Commits: 0c30e532 by Roberto C. Sánchez at 2023-08-22T09:39:03-04:00 CVE-2023-38197: add security blog article link - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] new Rust webpki issues

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 8aebb031 by Moritz Muehlenhoff at 2023-08-22T15:37:43+02:00 new Rust webpki issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] qemu/bullseye triage

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 2a489e86 by Moritz Muehlenhoff at 2023-08-22T15:27:34+02:00 qemu/bullseye triage - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3538-1 for zabbix

Tobias Frost pushed to branch master at Debian Security Tracker / security-tracker Commits: ef3a2751 by Tobias Frost at 2023-08-22T15:20:30+02:00 Reserve DLA-3538-1 for zabbix - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] NFU

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: ef9763da by Moritz Muehlenhoff at 2023-08-22T13:33:26+02:00 NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] fix typo

= @@ -160,7 +160,7 @@ qpdf (Thorsten Alteholz) qt4-x11 (Roberto C. Sánchez) NOTE: 20230612: Added by Front-Desk (apo) NOTE: 20230615: VCS: https://salsa.debian.org/qt-kde-team/qt/qt4-x11 - NOTE: 20230822: New CVS have been reported (roberto) + NOTE: 20230822

[Git][security-tracker-team/security-tracker][master] LTS: reclaim qt4-x11

-team/qt/qt4-x11 + NOTE: 20230822: New CVS have been reported (roberto) -- rails (utkarsh) NOTE: 20220909: Re-added due to regression (abhijith) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c4535ef9e532624219a038b63bbb3118f5698ffd -- View

[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 58f994e5 by Moritz Muehlenhoff at 2023-08-22T10:09:53+02:00 NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list