[Git][security-tracker-team/security-tracker][master] Reserve DLA-3635-1 for node-browserify-sign

Yadd pushed to branch master at Debian Security Tracker / security-tracker Commits: a14aab60 by Yadd at 2023-10-29T07:40:43+04:00 Reserve DLA-3635-1 for node-browserify-sign - - - - - 1 changed file: - data/DLA/list Changes: = data/DLA/list

[Git][security-tracker-team/security-tracker][master] dla: take galera-3

= @@ -74,7 +74,7 @@ freerdp2 (tobi) NOTE: 20231007: First round done, unfortunatly missed a few CVES while updating, will do an follow up. NOTE: 20231023: Will continue working on package next weekend. (tobi) -- -galera-3 +galera-3 (Adrian Bunk) NOTE: 20231028

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 32522bfe by security tracker role at 2023-10-28T20:11:40+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Track fixed version for zookeepr via unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 76b4fd98 by Salvatore Bonaccorso at 2023-10-28T21:15:39+02:00 Track fixed version for zookeepr via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] LTS: add galera-3

= @@ -74,6 +74,10 @@ freerdp2 (tobi) NOTE: 20231007: First round done, unfortunatly missed a few CVES while updating, will do an follow up. NOTE: 20231023: Will continue working on package next weekend. (tobi) -- +galera-3 + NOTE: 20231028: Added by Front-Desk

[Git][security-tracker-team/security-tracker][master] LTS: add python-urllib3 and assign to spwhitton

: = data/dla-needed.txt = @@ -169,6 +169,9 @@ python-os-brick NOTE: 20230525: Added by Front-Desk (lamby) NOTE: 20230525: NB. CVE-2023-2088 filed against python-glance-store, python-os-brick, nova and cinder. -- +python-urllib3 (spwhitton) + NOTE: 20231028

[Git][security-tracker-team/security-tracker][master] Add oss-security reference for CVE-2023-5178

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3e247e8f by Salvatore Bonaccorso at 2023-10-28T17:53:15+02:00 Add oss-security reference for CVE-2023-5178 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add two nats-server issues (one covering as well in nkeys)

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 754a8d46 by Salvatore Bonaccorso at 2023-10-28T17:50:15+02:00 Add two nats-server issues (one covering as well in nkeys) - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add note for fastdds, updates prepared by maintainer

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 992fa3db by Salvatore Bonaccorso at 2023-10-28T17:23:29+02:00 Add note for fastdds, updates prepared by maintainer - - - - - 1 changed file: - data/dsa-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b8b75ecc by Moritz Muehlenhoff at 2023-10-28T17:00:03+02:00 bugnums - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-46137/twisted

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 480a223d by Salvatore Bonaccorso at 2023-10-28T16:52:46+02:00 Add Debian bug reference for CVE-2023-46137/twisted - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 763c8647 by Moritz Muehlenhoff at 2023-10-28T16:46:20+02:00 bugnums - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] opensearch references

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b82f7b81 by Moritz Mühlenhoff at 2023-10-28T16:43:07+02:00 opensearch references - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add two additional references for CVE-2023-34059/open-vm-tools

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 24affaac by Salvatore Bonaccorso at 2023-10-28T16:22:39+02:00 Add two additional references for CVE-2023-34059/open-vm-tools - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] 3 commits: Add CVE-2023-465{69,70}/radare2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c4df4fd3 by Salvatore Bonaccorso at 2023-10-28T16:10:26+02:00 Add CVE-2023-465{69,70}/radare2 - - - - - 1c973326 by Salvatore Bonaccorso at 2023-10-28T16:10:28+02:00 Process some NFUs - - - -

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3634-1 for nss

Sean Whitton pushed to branch master at Debian Security Tracker / security-tracker Commits: 23dd068e by Sean Whitton at 2023-10-28T15:06:31+01:00 Reserve DLA-3634-1 for nss - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: update request-tracker4 notes with patch info

://github.com/bestpractical/rt/commit/afb7dcded721e27028e47b62e7e5ed8ffc492beb NOTE: 20231025: Andrew Ruthven is working on the buster-security upload, but will let the LTS handle the paperwork + NOTE: 20231028: Andrew has provided the buster patch, it has been posted to the team mailing list (Message

[Git][security-tracker-team/security-tracker][master] NFU

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 5c84d1db by Moritz Muehlenhoff at 2023-10-28T14:46:42+02:00 NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] bullseye/bookworm triage

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: e730a4f0 by Moritz Muehlenhoff at 2023-10-28T14:43:05+02:00 bullseye/bookworm triage - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3633-1 for gst-plugins-bad1.0

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 9063422b by Thorsten Alteholz at 2023-10-28T14:05:58+02:00 Reserve DLA-3633-1 for gst-plugins-bad1.0 - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2023-22067 doesn't apply to openjdk-11, thanks to pochu for the report

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 928c1f64 by Moritz Muehlenhoff at 2023-10-28T12:06:32+02:00 CVE-2023-22067 doesnt apply to openjdk-11, thanks to pochu for the report - - - - - 2 changed files: - data/CVE/list -

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-46407/ffmpeg

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4e19bf79 by Salvatore Bonaccorso at 2023-10-28T11:44:42+02:00 Add CVE-2023-46407/ffmpeg - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Track fix for CVE-2023-46234/node-browserify-sign via unstable upload

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 7a16c93f by Salvatore Bonaccorso at 2023-10-28T11:10:38+02:00 Track fix for CVE-2023-46234/node-browserify-sign via unstable upload - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-46490/cacti

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e58f6950 by Salvatore Bonaccorso at 2023-10-28T10:32:04+02:00 Add CVE-2023-46490/cacti - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5d1e6f86 by Salvatore Bonaccorso at 2023-10-28T10:30:56+02:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ef9b2710 by security tracker role at 2023-10-28T08:11:41+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2023-3223/undertow

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3f342e56 by Salvatore Bonaccorso at 2023-10-28T10:00:11+02:00 Add Debian bug reference for CVE-2023-3223/undertow - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-45960/dom4j

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 97de0da9 by Salvatore Bonaccorso at 2023-10-28T09:59:17+02:00 Add CVE-2023-45960/dom4j - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for nodejs issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 64b780a6 by Salvatore Bonaccorso at 2023-10-28T09:48:30+02:00 Add Debian bug reference for nodejs issues - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Update information on CVE-2023-3223/undertow

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3ecc02cf by Salvatore Bonaccorso at 2023-10-28T09:46:03+02:00 Update information on CVE-2023-3223/undertow - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Track fixed version for open-vm-tools issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 2e8f8e3d by Salvatore Bonaccorso at 2023-10-28T08:56:17+02:00 Track fixed version for open-vm-tools issues - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Three openimageio issues fixed in unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e1e36e41 by Salvatore Bonaccorso at 2023-10-28T08:51:58+02:00 Three openimageio issues fixed in unstable - - - - - 1 changed file: - data/CVE/list Changes: