[Git][security-tracker-team/security-tracker][master] Reserve DLA-3555-1 for php7.3

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 914153ee by Guilhem Moulin at 2023-09-05T22:17:52+02:00 Reserve DLA-3555-1 for php7.3 - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim libraw in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 19d134c5 by Guilhem Moulin at 2023-09-07T03:17:25+02:00 LTS: claim libraw in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3560-1 for libraw

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 518240ec by Guilhem Moulin at 2023-09-10T16:15:29+02:00 Reserve DLA-3560-1 for libraw - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3551-1 for otrs2

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ec73b88a by Guilhem Moulin at 2023-08-31T00:50:10+02:00 Reserve DLA-3551-1 for otrs2 - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim libssh2 in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: e3af50aa by Guilhem Moulin at 2023-09-04T19:48:17+02:00 LTS: claim libssh2 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3559-1 for libssh2

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ed4ffe78 by Guilhem Moulin at 2023-09-08T13:10:24+02:00 Reserve DLA-3559-1 for libssh2 - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim cacti and mediawiki in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 1a7c2602 by Guilhem Moulin at 2023-10-16T22:49:48+02:00 LTS: claim cacti and mediawiki in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: reclaim mediawiki in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 2595c0fb by Guilhem Moulin at 2023-11-07T14:35:00+01:00 LTS: reclaim mediawiki in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3630-1 for roundcube

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 1f6bf2a4 by Guilhem Moulin at 2023-10-24T23:46:14+02:00 Reserve DLA-3630-1 for roundcube - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3577-1 for roundcube

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: d589a2a2 by Guilhem Moulin at 2023-09-22T13:18:10+02:00 Reserve DLA-3577-1 for roundcube - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2023-43770 for roundcube's latest XSS vulnerability.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 013ba348 by Guilhem Moulin at 2023-09-22T10:00:50+02:00 CVE-2023-43770 for roundcubes latest XSS vulnerability. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim python-reportlab and python-git in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 93599ecb by Guilhem Moulin at 2023-09-29T01:59:50+02:00 LTS: claim python-reportlab and python-git in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3589-1 for python-git

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4eea415b by Guilhem Moulin at 2023-09-29T19:55:08+02:00 Reserve DLA-3589-1 for python-git - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3590-1 for python-reportlab

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 93f732af by Guilhem Moulin at 2023-09-29T21:45:12+02:00 Reserve DLA-3590-1 for python-reportlab - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] CVE-{2019-19450,2020-28463}/python-reportlab: Add links to patches.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: c1515d6d by Guilhem Moulin at 2023-09-29T21:04:26+02:00 CVE-{2019-19450,2020-28463}/python-reportlab: Add links to patches. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2018-20060/python-urllib3: Improve note wording.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: b27d4ca9 by Guilhem Moulin at 2023-10-08T03:14:33+02:00 CVE-2018-20060/python-urllib3: Improve note wording. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2018-20060/python-urllib3: Add note for lowercase headers.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 32641f68 by Guilhem Moulin at 2023-10-08T02:08:27+02:00 CVE-2018-20060/python-urllib3: Add note for lowercase headers. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim inetutils in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4638c324 by Guilhem Moulin at 2023-10-07T18:21:51+02:00 LTS: claim inetutils in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2021-33503/python-urllib3: Versions <1.25.4 are unaffected.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 505f879c by Guilhem Moulin at 2023-10-07T18:49:49+02:00 CVE-2021-33503/python-urllib3: Versions 1.25.4 are unaffected. Per upstream advisory at https://github.com/advisories/GHSA-q2q7-5pp4-w6pg .

[Git][security-tracker-team/security-tracker][master] 2 commits: Reserve DLA-3610-1 for python-urllib3

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: d1774c9e by Guilhem Moulin at 2023-10-08T12:46:22+02:00 Reserve DLA-3610-1 for python-urllib3 - - - - - c5f22ae0 by Guilhem Moulin at 2023-10-08T12:49:00+02:00 Reserve DLA-3611-1 for inetutils - -

[Git][security-tracker-team/security-tracker][master] DLA-3610-1: Also mark CVE-2018-25091/python-urllib3 as fixed.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: a6877d8d by Guilhem Moulin at 2023-10-16T00:04:34+02:00 DLA-3610-1: Also mark CVE-2018-25091/python-urllib3 as fixed. MITRE just assigned that ID for the non-titlecase variant of CVE-2018-20060. -

[Git][security-tracker-team/security-tracker][master] Fix sid version for CVE-2018-25091/python-urllib3.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 16b2d4ed by Guilhem Moulin at 2023-10-16T01:10:02+02:00 Fix sid version for CVE-2018-25091/python-urllib3. The first version ≥1.25.2 that landed in unstable is 1.25.6-4 no 1.25.6-1 (which was

[Git][security-tracker-team/security-tracker][master] LTS: claim python-urllib3 in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 3c83fb90 by Guilhem Moulin at 2023-10-06T11:06:49+02:00 LTS: claim python-urllib3 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim php7.3 in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: c28d98cf by Guilhem Moulin at 2023-08-20T14:30:38+02:00 LTS: claim php7.3 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2019-{18179,18180}/otrs2: Add links to fixing commits.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 659eb0f6 by Guilhem Moulin at 2023-08-16T16:40:38+02:00 CVE-2019-{18179,18180}/otrs2: Add links to fixing commits. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim otrs2 in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ef8e08e3 by Guilhem Moulin at 2023-08-15T16:14:26+02:00 LTS: claim otrs2 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2021-21439/otrs2: Add link to fixing commit.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 22924391 by Guilhem Moulin at 2023-08-17T00:24:21+02:00 CVE-2021-21439/otrs2: Add link to fixing commit. For znuny 6.0.33. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2021-21441/otrs2: Add link to fixing commit.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 493dcf07 by Guilhem Moulin at 2023-08-17T01:05:25+02:00 CVE-2021-21441/otrs2: Add link to fixing commit. >From znuny 6.0.34. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2021-36100/otrs2: Add link to advisory and fixing commits.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: eed1e199 by Guilhem Moulin at 2023-08-17T02:18:57+02:00 CVE-2021-36100/otrs2: Add link to advisory and fixing commits. >From znuny 6.0.41. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2020-1776/otrs2: Add link to fixing commit.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 75184deb by Guilhem Moulin at 2023-08-16T19:22:40+02:00 CVE-2020-1776/otrs2: Add link to fixing commit. - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2019-18179/otrs2: Add follow-up commits.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4bd8ca57 by Guilhem Moulin at 2023-08-16T17:05:15+02:00 CVE-2019-18179/otrs2: Add follow-up commits. - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] 3 commits: LTS: claim node-loader-utils in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: d072b919 by Guilhem Moulin at 2022-12-31T01:22:42+01:00 LTS: claim node-loader-utils in dla-needed.txt - - - - - c331f310 by Guilhem Moulin at 2022-12-31T01:35:15+01:00 Mark CVE-2022-{37599,37603}

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3258-1 for node-loader-utils

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 2b698bb1 by Guilhem Moulin at 2022-12-31T17:18:20+01:00 Reserve DLA-3258-1 for node-loader-utils - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim node-xmldom in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 926036c6 by Guilhem Moulin at 2022-12-31T18:52:13+01:00 LTS: claim node-xmldom in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] LTS: claim net-snmp in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: f714da2f by Guilhem Moulin at 2023-01-03T15:48:14+01:00 LTS: claim net-snmp in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3260-1 for node-xmldom

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ffcb381a by Guilhem Moulin at 2023-01-01T17:49:36+01:00 Reserve DLA-3260-1 for node-xmldom - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3221-1 for node-cached-path-relative

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 182c83f1 by Guilhem Moulin at 2022-12-05T00:42:09+01:00 Reserve DLA-3221-1 for node-cached-path-relative - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3222-1 for node-fetch

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ca753ef7 by Guilhem Moulin at 2022-12-05T01:07:03+01:00 Reserve DLA-3222-1 for node-fetch - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim node-tar in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 487a94c1 by Guilhem Moulin at 2022-12-11T18:43:37+01:00 LTS: claim node-tar in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3237-1 for node-tar

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 121a0835 by Guilhem Moulin at 2022-12-12T14:47:12+01:00 Reserve DLA-3237-1 for node-tar - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim cacti in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: c9094a42 by Guilhem Moulin at 2022-12-18T12:14:11+01:00 LTS: claim cacti in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2021-46144: mark sid/bookworm as fixed.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 83a3acfe by Guilhem Moulin at 2022-12-21T10:18:39+01:00 CVE-2021-46144: mark sid/bookworm as fixed. The fix made it to 1.6~beta+dfsg-1 and subsequent versions, including 1.6.0+dfsg-1. - - - - - 1

[Git][security-tracker-team/security-tracker][master] 2 commits: LTS: claim node-cached-path-relative in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 15130fcf by Guilhem Moulin at 2022-12-03T17:49:44+01:00 LTS: claim node-cached-path-relative in dla-needed.txt - - - - - 9fbd781d by Guilhem Moulin at 2022-12-03T17:49:44+01:00 LTS: claim

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3235-1 for node-eventsource

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: f5eedaa2 by Guilhem Moulin at 2022-12-11T14:35:35+01:00 Reserve DLA-3235-1 for node-eventsource - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] claim heimdal

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: f462e6ab by Guilhem Moulin at 2022-11-23T23:55:33+01:00 claim heimdal - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3205-1 for inetutils

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 0c90cfd7 by Guilhem Moulin at 2022-11-25T13:31:49+01:00 Reserve DLA-3205-1 for inetutils - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] DLA-3205-1: CVE-2020-8284 belongs to curl not inetutils.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: f4e51b0d by Guilhem Moulin at 2022-11-25T13:36:29+01:00 DLA-3205-1: CVE-2020-8284 belongs to curl not inetutils. (Spelled it out in d/changelog since its similar to inetutils CVE-2021-40491, but it

[Git][security-tracker-team/security-tracker][master] Claim inetutils in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: c489d9ff by Guilhem Moulin at 2022-11-24T23:46:15+01:00 Claim inetutils in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3206-1 for heimdal

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: e7ca4158 by Guilhem Moulin at 2022-11-26T20:27:26+01:00 Reserve DLA-3206-1 for heimdal - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3271-1 for node-minimatch

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 6f8b040c by Guilhem Moulin at 2023-01-15T16:20:33+01:00 Reserve DLA-3271-1 for node-minimatch - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] 2 commits: LTS: claim lemonldap-ng in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 14c44648 by Guilhem Moulin at 2023-01-15T14:58:03+01:00 LTS: claim lemonldap-ng in dla-needed.txt - - - - - 5049f1e5 by Guilhem Moulin at 2023-01-15T15:20:25+01:00 CVE-2022-3517: Add links to follow

[Git][security-tracker-team/security-tracker][master] 3 commits: LTS: claim node-minimatch in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 8f2611d4 by Guilhem Moulin at 2023-01-15T02:59:24+01:00 LTS: claim node-minimatch in dla-needed.txt - - - - - c9864ffb by Guilhem Moulin at 2023-01-15T03:16:46+01:00 LTS: claim node-moment in

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3291-1 for node-object-path

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 86672ee3 by Guilhem Moulin at 2023-01-29T17:05:53+01:00 Reserve DLA-3291-1 for node-object-path - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] dla-needed.txt: Add note for node-css-what.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 145fb8f5 by Guilhem Moulin at 2023-01-30T11:33:45+01:00 dla-needed.txt: Add note for node-css-what. - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] 2 commits: LTS: claim node-qs in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 0250004d by Guilhem Moulin at 2023-01-30T12:05:26+01:00 LTS: claim node-qs in dla-needed.txt - - - - - d137ffdb by Guilhem Moulin at 2023-01-30T12:05:31+01:00 LTS: claim node-url-parse in

[Git][security-tracker-team/security-tracker][master] node-qs: Add note for CVE-2022-24999.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 44790b81 by Guilhem Moulin at 2023-01-30T16:28:20+01:00 node-qs: Add note for CVE-2022-24999. - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2020-36659 and CVE-2020-36658.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 1a340f93 by Guilhem Moulin at 2023-01-27T13:08:13+01:00 Triage CVE-2020-36659 and CVE-2020-36658. - - - - - 01c0d4f7 by Guilhem Moulin at 2023-01-27T13:08:13+01:00 LTS: claim

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3285-1 for libapache-session-browseable-perl

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: de9b2475 by Guilhem Moulin at 2023-01-28T12:52:32+01:00 Reserve DLA-3285-1 for libapache-session-browseable-perl - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3284-1 for libapache-session-ldap-perl

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: b5d5f9b9 by Guilhem Moulin at 2023-01-28T12:52:04+01:00 Reserve DLA-3284-1 for libapache-session-ldap-perl - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3287-1 for lemonldap-ng

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: f8a0a715 by Guilhem Moulin at 2023-01-28T16:19:23+01:00 Reserve DLA-3287-1 for lemonldap-ng - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim dojo in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 623636a2 by Guilhem Moulin at 2023-01-28T17:00:26+01:00 LTS: claim dojo in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3289-1 for dojo

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 2b181cd3 by Guilhem Moulin at 2023-01-28T22:57:33+01:00 Reserve DLA-3289-1 for dojo - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim node-object-path in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 841100ea by Guilhem Moulin at 2023-01-29T12:02:33+01:00 LTS: claim node-object-path in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: reclaim wordpress in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: e0866e3e by Guilhem Moulin at 2023-03-20T11:50:55+01:00 LTS: reclaim wordpress in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3363-1 for pcre2

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 90ab1b53 by Guilhem Moulin at 2023-03-16T03:28:24+01:00 Reserve DLA-3363-1 for pcre2 - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim php7.3 in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: a8fd920d by Guilhem Moulin at 2023-02-25T13:28:42+01:00 LTS: claim php7.3 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Add references for CVE-2022-43548

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 6325f68d by Guilhem Moulin at 2023-02-23T20:30:28+01:00 Add references for CVE-2022-43548 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3344-1 for nodejs

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4835b67a by Guilhem Moulin at 2023-02-26T01:59:55+01:00 Reserve DLA-3344-1 for nodejs - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Add links to follow-up commits for CVE-2022-32212/nodejs.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 0d7bcbe5 by Guilhem Moulin at 2023-02-25T19:21:16+01:00 Add links to follow-up commits for CVE-2022-32212/nodejs. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2023-23919/nodejs as not-affected for buster.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 9e00fb79 by Guilhem Moulin at 2023-02-25T21:40:19+01:00 Mark CVE-2023-23919/nodejs as not-affected for buster. And add reference to the disclosure report, where (unlike the CVE text) upstream claims

[Git][security-tracker-team/security-tracker][master] LTS: claim spip in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 6e6feb8b by Guilhem Moulin at 2023-02-26T15:05:15+01:00 LTS: claim spip in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3345-1 for php7.3

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: b383d3eb by Guilhem Moulin at 2023-02-26T22:41:01+01:00 Reserve DLA-3345-1 for php7.3 - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim syslog-ng in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 806adb7b by Guilhem Moulin at 2023-02-26T23:27:08+01:00 LTS: claim syslog-ng in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2022-38725/syslog-ng: Add reference to upstream fixes.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4ae395b4 by Guilhem Moulin at 2023-02-27T11:51:57+01:00 CVE-2022-38725/syslog-ng: Add reference to upstream fixes. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] LTS: reclaim node-url-parse in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ed99e3bc by Guilhem Moulin at 2023-02-20T14:01:15+01:00 LTS: reclaim node-url-parse in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3347-1 for spip

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 928a6497 by Guilhem Moulin at 2023-02-27T21:03:02+01:00 Reserve DLA-3347-1 for spip - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim wordpress in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: d53d9714 by Guilhem Moulin at 2023-03-03T13:35:50+01:00 LTS: claim wordpress in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3347-2 for spip

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 28f9bc33 by Guilhem Moulin at 2023-03-03T23:38:10+01:00 Reserve DLA-3347-2 for spip - - - - - 1 changed file: - data/DLA/list Changes: = data/DLA/list

[Git][security-tracker-team/security-tracker][master] LTS: claim pcre2 in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 76425fc6 by Guilhem Moulin at 2023-03-03T19:37:51+01:00 LTS: claim pcre2 in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3336-1 for node-url-parse

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ec09bb29 by Guilhem Moulin at 2023-02-23T01:33:53+01:00 Reserve DLA-3336-1 for node-url-parse - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: claim nodejs in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 7bc142d1 by Guilhem Moulin at 2023-02-23T02:36:40+01:00 LTS: claim nodejs in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2023-XXXX/spip: Add reference to upstream fixes.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: d381eb82 by Guilhem Moulin at 2023-02-28T13:36:40+01:00 CVE-2023-/spip: Add reference to upstream fixes. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2023-27372/spip assigned

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4f904c47 by Guilhem Moulin at 2023-02-28T22:19:17+01:00 CVE-2023-27372/spip assigned - - - - - 2 changed files: - data/CVE/list - data/DLA/list Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3348-1 for syslog-ng

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 3e5cc616 by Guilhem Moulin at 2023-03-01T00:20:46+01:00 Reserve DLA-3348-1 for syslog-ng - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2023-27372/spip: Add references to regression fix.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4e0325da by Guilhem Moulin at 2023-02-28T23:01:58+01:00 CVE-2023-27372/spip: Add references to regression fix. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2023-23918 as not-affected for Buster.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 989d2a00 by Guilhem Moulin at 2023-02-25T01:27:21+01:00 Mark CVE-2023-23918 as not-affected for Buster. v10.x doesnt support policy manifests (nor ‘--experimental-policy=’ / ‘--policy-*=’ options).

[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2022-43504/wordpress

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 05f299b5 by Guilhem Moulin at 2023-04-24T15:10:13+02:00 Triage CVE-2022-43504/wordpress - - - - - cd20d498 by Guilhem Moulin at 2023-04-24T15:10:15+02:00 Triage

[Git][security-tracker-team/security-tracker][master] Remove wordpress from dla-needed.txt.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 9b5ded4a by Guilhem Moulin at 2023-04-24T17:07:25+02:00 Remove wordpress from dla-needed.txt. - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Triage wordpress for buster

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 752b9f78 by Guilhem Moulin at 2023-04-24T15:43:07+02:00 Triage wordpress for buster Unclear which issue the CVE refers to exactly, but the security fixes from 6.0.2 have been backported to 5.0.17

[Git][security-tracker-team/security-tracker][master] LTS: claim openvswitch in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 28bbdbfe by Guilhem Moulin at 2023-04-25T13:03:23+02:00 LTS: claim openvswitch in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Triage one more buster issue for buster.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: abd35b4c by Guilhem Moulin at 2023-04-25T09:54:35+02:00 Triage one more buster issue for buster. WordPress 5.0.16 includes the updated jQuery where the vulnerability lies, see

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3410-1 for openvswitch

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 632f7522 by Guilhem Moulin at 2023-05-01T02:09:48+02:00 Reserve DLA-3410-1 for openvswitch - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] LTS: reclaim wordpress in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 6cb0bd4a by Guilhem Moulin at 2023-04-10T20:26:56+02:00 LTS: reclaim wordpress in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] LTS: claim opensc in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: ab541f36 by Guilhem Moulin at 2023-06-15T13:48:47+02:00 LTS: claim opensc in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Add notes for CVE-2023-28862/lemonldap-ng.

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 30218cbd by Guilhem Moulin at 2023-07-12T22:51:49+02:00 Add notes for CVE-2023-28862/lemonldap-ng. - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] LTS: claim libapache2-mod-auth-openidc in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4a0e9dba by Guilhem Moulin at 2023-07-18T09:43:40+02:00 LTS: claim libapache2-mod-auth-openidc in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3499-1 for libapache2-mod-auth-openidc

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 2da979ec by Guilhem Moulin at 2023-07-19T00:39:49+02:00 Reserve DLA-3499-1 for libapache2-mod-auth-openidc - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt

[Git][security-tracker-team/security-tracker][master] LTS: claim pandoc in dla-needed.txt

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: a4d04a56 by Guilhem Moulin at 2023-07-11T12:09:04+02:00 LTS: claim pandoc in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3493-1 for symfony

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: aa0e0bc8 by Guilhem Moulin at 2023-07-11T23:44:47+02:00 Reserve DLA-3493-1 for symfony - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3496-1 for lemonldap-ng

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker Commits: 4be5b41f by Guilhem Moulin at 2023-07-14T12:24:54+02:00 Reserve DLA-3496-1 for lemonldap-ng - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes:

  1   2   3   >