[Git][security-tracker-team/security-tracker][master] Add CVE-2018-12022/jackson-databind

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1ba93952 by Salvatore Bonaccorso at 2019-01-31T07:48:17Z Add CVE-2018-12022/jackson-databind - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2018-12023/jackson-databind

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9577b5b1 by Salvatore Bonaccorso at 2019-01-31T07:46:15Z Add CVE-2018-12023/jackson-databind - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2019-5782/chromium

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: bc5a48da by Salvatore Bonaccorso at 2019-01-31T07:44:07Z Add CVE-2019-5782/chromium - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add CVE-2019-6690/python-gnupg

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8c05f5a5 by Salvatore Bonaccorso at 2019-01-31T07:42:18Z Add CVE-2019-6690/python-gnupg - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2019-7147/nasm

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 34561db0 by Salvatore Bonaccorso at 2019-01-31T07:38:59Z Add CVE-2019-7147/nasm - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2018-207{48,49,50}/libvncserver

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9ed0f24c by Salvatore Bonaccorso at 2019-01-30T22:20:07Z Track fixed version for CVE-2018-207{48,49,50}/libvncserver - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-3813/spice in unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a26c40fd by Salvatore Bonaccorso at 2019-01-30T21:06:36Z Add fixed version for CVE-2019-3813/spice in unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] 2 commits: CVEs have been fixed

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: a67d65cb by Thorsten Alteholz at 2019-01-30T20:44:49Z CVEs have been fixed - - - - - 8ccf597a by Thorsten Alteholz at 2019-01-30T20:45:22Z Reserve DLA-1651-1 for libgd2 - - - - - 3 changed

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 45c8e8dd by security tracker role at 2019-01-30T20:10:20Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] CVE/list: update for latest cacti release

Paul Gevers pushed to branch master at Debian Security Tracker / security-tracker Commits: f21f0376 by Paul Gevers at 2019-01-30T18:24:31Z CVE/list: update for latest cacti release - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2018-207{48,49,50}/libvncserver

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 73ff7dfa by Salvatore Bonaccorso at 2019-01-30T18:23:10Z Add Debian bug reference for CVE-2018-207{48,49,50}/libvncserver - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add spelling fix in explanation of not-affected status

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b5254993 by Salvatore Bonaccorso at 2019-01-30T18:16:42Z Add spelling fix in explanation of not-affected status - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Stretch not affected by CVE-2018-20748, CVE-2018-20749 and CVE-2018-20750

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f52786d6 by Salvatore Bonaccorso at 2019-01-30T18:15:02Z Stretch not affected by CVE-2018-20748, CVE-2018-20749 and CVE-2018-20750 As no update with incomplete fixes was released for the

[Git][security-tracker-team/security-tracker][master] Add CVE-2018-20748/libvncserver

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d33dc413 by Salvatore Bonaccorso at 2019-01-30T18:12:29Z Add CVE-2018-20748/libvncserver - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2018-207{49,50}/libvncserver incomplete fixes for CVE-2018-15127

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 574c881f by Salvatore Bonaccorso at 2019-01-30T18:13:17Z Add CVE-2018-207{49,50}/libvncserver incomplete fixes for CVE-2018-15127 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for mariadb-10.3 issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d4a82492 by Salvatore Bonaccorso at 2019-01-30T18:08:09Z Add Debian bug reference for mariadb-10.3 issues - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-1650-1 for rssh

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 2733bdb6 by Markus Koschany at 2019-01-30T17:47:50Z Reserve DLA-1650-1 for rssh - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] One duplicate CVE for avahi REJECTED

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 7de61b85 by Salvatore Bonaccorso at 2019-01-30T16:52:30Z One duplicate CVE for avahi REJECTED Move relevant information to the remaining entry CVE-2017-6519 as it was decided that the

[Git][security-tracker-team/security-tracker][master] Reserve DLA-1649-1 for spice

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 019a4b1e by Emilio Pozuelo Monfort at 2019-01-30T16:26:21Z Reserve DLA-1649-1 for spice - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-1648-1 for firefox-esr

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 51065f99 by Emilio Pozuelo Monfort at 2019-01-30T16:21:49Z Reserve DLA-1648-1 for firefox-esr - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim php5 in dla-needed.txt

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker Commits: 79ea5296 by Roberto C. Sánchez at 2019-01-30T15:42:41Z LTS: claim php5 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Add php5 to dla-needed.txt

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: dd339f5b by Markus Koschany at 2019-01-30T15:31:02Z Add php5 to dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt

[Git][security-tracker-team/security-tracker][master] Reserve DSA number for php-pear update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ef1dbc49 by Salvatore Bonaccorso at 2019-01-30T15:28:41Z Reserve DSA number for php-pear update - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] rssh DSA

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 40b75608 by Moritz Muehlenhoff at 2019-01-30T15:20:37Z rssh DSA - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: = data/DSA/list

[Git][security-tracker-team/security-tracker][master] firefox DSA

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 55cfb215 by Moritz Muehlenhoff at 2019-01-30T14:56:18Z firefox DSA - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] 3 commits: Add Debian bug reference for CVE-2019-7150/elfutils

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9c845012 by Salvatore Bonaccorso at 2019-01-30T14:44:30Z Add Debian bug reference for CVE-2019-7150/elfutils - - - - - 2329150b by Salvatore Bonaccorso at 2019-01-30T14:44:54Z Add Debian bug

[Git][security-tracker-team/security-tracker][master] Track unstable fix for CVE-2018-17204/openvswitch

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e1f5eb8b by Salvatore Bonaccorso at 2019-01-30T14:42:31Z Track unstable fix for CVE-2018-17204/openvswitch - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2018-17205/openvswitch fixed in 2.10.0+2018.08.28+git.8ca7c82b7d+ds1-1 for unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6a75503d by Salvatore Bonaccorso at 2019-01-30T14:40:22Z CVE-2018-17205/openvswitch fixed in 2.10.0+2018.08.28+git.8ca7c82b7d+ds1-1 for unstable - - - - - 1 changed file: - data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-17206/openvswitch

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ab2779b8 by Salvatore Bonaccorso at 2019-01-30T14:37:47Z Add fixed version for CVE-2018-17206/openvswitch - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Track fix for CVE-2017-8872/libxml2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c2a2d93c by Salvatore Bonaccorso at 2019-01-30T13:44:38Z Track fix for CVE-2017-8872/libxml2 - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] take thunderbird

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 10236f85 by Moritz Muehlenhoff at 2019-01-30T13:39:30Z take thunderbird - - - - - 1 changed file: - data/dsa-needed.txt Changes: = data/dsa-needed.txt

[Git][security-tracker-team/security-tracker][master] NFU

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 276e8284 by Moritz Muehlenhoff at 2019-01-30T13:36:00Z NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add coturn to dla-needed.txt

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 6de2a8cb by Markus Koschany at 2019-01-30T13:18:48Z Add coturn to dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2019-6131,mupdf: Jessie is not affected.

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 1336a18c by Markus Koschany at 2019-01-30T12:59:39Z CVE-2019-6131,mupdf: Jessie is not affected. Vulnerable code is not present (svg support). - - - - - c4aeb744 by Markus Koschany at

[Git][security-tracker-team/security-tracker][master] Claim rssh in dla-needed.txt

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: ac408c2f by Markus Koschany at 2019-01-30T12:51:14Z Claim rssh in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] dla: remove libreoffice, no open issues

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 00fb28ea by Emilio Pozuelo Monfort at 2019-01-30T12:19:27Z dla: remove libreoffice, no open issues - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] dla: take mariadb-10.0

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 6099c192 by Emilio Pozuelo Monfort at 2019-01-30T12:16:11Z dla: take mariadb-10.0 - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] dla: take spice

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 3a2275b9 by Emilio Pozuelo Monfort at 2019-01-30T11:41:25Z dla: take spice - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] 5 commits: Add upstream commit reference for CVE-2019-7150

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0ca9d5f1 by Salvatore Bonaccorso at 2019-01-30T09:55:40Z Add upstream commit reference for CVE-2019-7150 - - - - - 58fd3cc3 by Salvatore Bonaccorso at 2019-01-30T09:56:05Z Add upstream commit

[Git][security-tracker-team/security-tracker][master] firefox issues from mfsa2019-01 fixed via 65.0-1 upload

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f5164613 by Salvatore Bonaccorso at 2019-01-30T09:16:31Z firefox issues from mfsa2019-01 fixed via 65.0-1 upload - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2016-5824 as affecting thunderbird

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 23d5928c by Emilio Pozuelo Monfort at 2019-01-30T09:06:50Z Mark CVE-2016-5824 as affecting thunderbird - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] NFU

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker Commits: dcfa4201 by Henri Salo at 2019-01-30T08:47:53Z NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@

[Git][security-tracker-team/security-tracker][master] NFU

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker Commits: f81557c9 by Henri Salo at 2019-01-30T08:42:15Z NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@

[Git][security-tracker-team/security-tracker][master] NFU

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker Commits: 8a235ee6 by Henri Salo at 2019-01-30T08:27:01Z NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@

[Git][security-tracker-team/security-tracker][master] NFU

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker Commits: 92d838bc by Henri Salo at 2019-01-30T08:18:59Z NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list = @@

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8d6b76ec by security tracker role at 2019-01-30T08:10:19Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for three thunderbird CVEs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: aa61719a by Salvatore Bonaccorso at 2019-01-30T08:03:15Z Add fixed version via unstable for three thunderbird CVEs - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add thunderbird to dsa-needed list

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 767da4b1 by Salvatore Bonaccorso at 2019-01-30T08:00:54Z Add thunderbird to dsa-needed list - - - - - 1 changed file: - data/dsa-needed.txt Changes: =