[Git][security-tracker-team/security-tracker][master] Add proposed update for mistral via stretch-pu

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 59ac6471 by Salvatore Bonaccorso at 2018-11-15T14:27:29Z Add proposed update for mistral via stretch-pu - - - - - 1 changed file: - data/next-point-update.txt Changes:

[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5a7426e7 by Salvatore Bonaccorso at 2018-11-15T14:59:38Z Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8701550c by Salvatore Bonaccorso at 2018-11-15T15:39:56Z Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-{19198,19199,19200}/uriparser (#913817)

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6c81f488 by Salvatore Bonaccorso at 2018-11-15T15:57:31Z Add Debian bug reference for CVE-2018-{19198,19199,19200}/uriparser (#913817) - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2018-9274/harfbuzz

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 11a25bbb by Salvatore Bonaccorso at 2018-11-15T15:02:39Z Add CVE-2018-9274/harfbuzz - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add CVE-2018-19278/asterisk (AST-2018-010)

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 415e9052 by Salvatore Bonaccorso at 2018-11-15T15:13:41Z Add CVE-2018-19278/asterisk (AST-2018-010) Problematic code only in the 15.x and 16.x releases. - - - - - 1 changed file: -

[Git][security-tracker-team/security-tracker][master] Mark CVE-2018-17187/qpid-proton as unimportant

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a47cb250 by Salvatore Bonaccorso at 2018-11-15T16:28:49Z Mark CVE-2018-17187/qpid-proton as unimportant proton-j is not build into binary packages but the source present. Later versions removed

[Git][security-tracker-team/security-tracker][master] CVE-2018-0734 does not affect Jessie

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 68cf471e by Thorsten Alteholz at 2018-11-15T13:38:03Z CVE-2018-0734 does not affect Jessie - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Take mariadb-10.1 from dsa-needed

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 50ab5bee by Salvatore Bonaccorso at 2018-11-15T15:43:44Z Take mariadb-10.1 from dsa-needed - - - - - 1 changed file: - data/dsa-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Update openjpeg2 entry in dla-needed

: 20181115: wrote patches for CVE-2018-5785, CVE-2017-17480 and CVE-2018-18088, still + NOTE: waiting for upstream to approve my PR before upload NOTE: had in depth investigations for CVE-2018-5727, see upstream bug report -- openssl (Thorsten Alteholz) View it on GitLab: https

[Git][security-tracker-team/security-tracker][master] Update information of (ancient) GlusterFS issue CVE-2012-5635

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: de046490 by Salvatore Bonaccorso at 2018-11-15T19:57:56Z Update information of (ancient) GlusterFS issue CVE-2012-5635 The unsafe use of /tmp issues were fixed a long time back with two commits:

[Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2011-2767/libapache2-mod-perl2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ce8a295f by Salvatore Bonaccorso at 2018-11-15T20:11:59Z Add fixed version via unstable for CVE-2011-2767/libapache2-mod-perl2 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 66758e59 by security tracker role at 2018-11-15T20:10:18Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Process one .dotnet CoreFX specific CVE as NFU

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 039ca5e5 by Salvatore Bonaccorso at 2018-11-16T05:11:26Z Process one .dotnet CoreFX specific CVE as NFU - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2018-17478/chromium-browser fixed in unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f4856605 by Salvatore Bonaccorso at 2018-11-16T05:13:15Z CVE-2018-17478/chromium-browser fixed in unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Claim uriparser in dla-needed.txt

Lucas Kanashiro pushed to branch master at Debian Security Tracker / security-tracker Commits: 8d79d602 by Lucas Kanashiro at 2018-11-15T09:55:44Z Claim uriparser in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b1df794d by security tracker role at 2018-11-15T08:10:14Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list