Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74756a30 by Tobias Frost at 2023-09-10T16:16:23+02:00
Revert 535390052, CVE-2022-40626/zabbix after revisting patch for jessie
Im not sure anymore if it has been introduced later
and re-evaluation for
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f9985ab0 by Tobias Frost at 2023-11-01T08:19:49+01:00
document embedded-code copy of enet in assaultcube.
- - - - -
1 changed file:
- data/embedded-code-copies
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca3230ff by Tobias Frost at 2023-11-07T07:16:37+01:00
relcaim freerdp2, update status.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a6ae9e9c by Tobias Frost at 2023-09-24T13:44:30+02:00
LTS: claim firmware-nonfree in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d5b5bbc0 by Tobias Frost at 2023-09-24T09:40:46+02:00
LTS: claim suricata in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
487d8afa by Tobias Frost at 2023-09-24T09:41:12+02:00
LTS: claim nasm in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7bc895d4 by Tobias Frost at 2023-09-30T21:58:31+02:00
LTS: claim freerdp2 in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8b749e7e by Tobias Frost at 2023-09-30T21:09:40+02:00
Reserve DLA-3596-1 for firmware-nonfree
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ede66f4a by Tobias Frost at 2023-10-01T11:29:48+02:00
Unclaim and remove nasm from dla-needed.txt, as suggested by rouca to me via
IRC. (documenation part)
- - - - -
4234bbc9 by Tobias Frost at
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e4431cb by Tobias Frost at 2023-10-01T20:59:15+02:00
Mark CVE-2022-29654 the same at its duplicate, CVE-2022-44370
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c85b6e56 by Tobias Frost at 2023-10-01T20:19:43+02:00
CVE-2022-40626/zabbix : Mark no-dsa for buster as well, for consitency.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
677ea8f5 by Tobias Frost at 2023-10-04T19:35:11+02:00
freerdp2: Add patches fixing CVEs (see complete commit message for details)
Asked Upstream to associate CVEs with commit ids (via IRC,
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e345b33f by Tobias Frost at 2023-10-03T12:42:05+02:00
identified potential patch for CVE-2023-39353/freerdp2
- - - - -
21a3763b by Tobias Frost at 2023-10-03T12:48:48+02:00
Potential patch for
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
35c2267b by Tobias Frost at 2023-10-03T13:01:28+02:00
Revert identified potential patch for CVE-2023-39353/freerdp2
This reverts commit e345b33f305d9f11ad03283806e743dc8039e7a5.
(I think this was a
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
54c94596 by Tobias Frost at 2023-10-07T12:12:59+02:00
swap order of patches for CVE-2023-39353, as they have to be applied in that
order.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
04a56826 by Tobias Frost at 2023-10-07T12:15:20+02:00
Fix typo in version for CVE-2023-39356/freerdp2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
39e68e24 by Tobias Frost at 2023-10-07T19:34:11+02:00
Reserve DLA-3606-1 for freerdp2
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a2b73022 by Tobias Frost at 2023-10-07T20:12:43+02:00
DLA-3606-1 Fix wrong number in CVE, paste error
s/CVE-2023-39357/CVE-2023-40567/
- - - - -
1 changed file:
- data/DLA/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3444d5a6 by Tobias Frost at 2023-10-07T20:14:56+02:00
Readd freerdp2, missed a few CVEs.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c0436bd8 by Tobias Frost at 2023-10-07T19:35:16+02:00
Reserve DLA-3608-1 for vinagre
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9fad6642 by Tobias Frost at 2023-10-07T19:34:57+02:00
Reserve DLA-3607-1 for gnome-boxes
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2fff31fc by Tobias Frost at 2023-10-21T12:09:11+02:00
DLA-3538-2 zabbix - regression update.
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2b1225ec by Tobias Frost at 2023-10-21T12:25:50+02:00
Add version for DLA-3538-2
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7661cd41 by Tobias Frost at 2023-10-22T09:52:56+02:00
CVE-2023-32723/zabbix, identified upstream fix.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4e3e9192 by Tobias Frost at 2023-10-22T10:28:58+02:00
CVE-2023-29454/zabbix - buster does not have the affected Go agent.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2a359dd4 by Tobias Frost at 2023-10-22T10:18:13+02:00
CVE-2023-32721/zabbix, add potential upstream fix.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c8f919ca by Tobias Frost at 2023-10-22T10:55:04+02:00
Add note that Im still wokring on the package.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
70191a27 by Tobias Frost at 2023-08-23T10:23:08+02:00
Drop CVE-2022-35229 from data/DLA/list, as it had been fixed (security wise) in
the previous upload already.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ef3a2751 by Tobias Frost at 2023-08-22T15:20:30+02:00
Reserve DLA-3538-1 for zabbix
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
99397b29 by Tobias Frost at 2022-10-29T11:01:35+02:00
claim clickhouse
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
306e93e5 by Tobias Frost at 2022-12-29T11:18:27+01:00
Reserve DLA-3250-1 for multipath-tools
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3748b8c6 by Tobias Frost at 2022-12-29T16:38:00+01:00
CVE-2021-34145 - CVE-2021-34148 in bluez-firmware have been introduced only
later, after bullseye release.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f605b5e5 by Tobias Frost at 2023-01-13T12:09:19+01:00
LTS: claim modsecurity-crs in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8e9b25ce by Tobias Frost at 2023-01-13T13:24:18+01:00
LTS: claim libde265 in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
05feef75 by Tobias Frost at 2023-01-13T15:58:21+01:00
LTS: claim libapreq2 in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b6bc211d by Tobias Frost at 2022-12-07T18:08:59+01:00
Reserve DLA-3232-1 for virglrenderer
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1392dbcd by Tobias Frost at 2022-12-05T11:37:01+01:00
Claim virglrenderer.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bb8ee6f6 by Tobias Frost at 2022-12-16T18:26:46+01:00
LTS: claim multipath-tools in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
adaa8a72 by Tobias Frost at 2022-12-15T17:54:53+01:00
Reserve DLA-3240-1 for libde2565.
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
67e0c308 by Tobias Frost at 2022-12-13T15:41:28+01:00
Reserve DLA-3238-1 for pngcheck
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3772d3b8 by Tobias Frost at 2022-12-15T16:55:08+01:00
CVE-2022-1253 does not affect buster and stretch.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
099e0d6d by Tobias Frost at 2022-12-10T13:36:56+01:00
Claim pngcheck.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c5a4587a by Tobias Frost at 2022-12-10T13:38:18+01:00
Claim libde265 (while waiting for feedback on pngcheck)
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
13e6a3ee by Tobias Frost at 2023-01-16T16:56:18+01:00
LTS: claim ring in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
65afed84 by Tobias Frost at 2023-01-14T17:00:52+01:00
Reserve DLA-3269-1 for libapreq2
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
666ae359 by Tobias Frost at 2023-01-21T08:47:49+01:00
CVE-2022-48279 also affects modsecurity.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0b157ca9 by Tobias Frost at 2023-01-24T23:00:49+01:00
Reverse DLA-3280-1 for libde265.
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f5ccb5ef by Tobias Frost at 2023-01-25T08:02:54+01:00
more updates of fixed CVEs in libde265
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7d040707 by Tobias Frost at 2023-01-25T07:30:46+01:00
CVE-2020-21594 was fixed in 1.0.3-1+deb10u1.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dade5e0b by Tobias Frost at 2023-01-26T16:34:35+01:00
LTS: release claim on ring in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a96eb0b6 by Tobias Frost at 2023-01-26T19:32:10+01:00
Reserve DLA-3283-1 for modsecurity-apache
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
252c6414 by Tobias Frost at 2023-01-25T08:59:41+01:00
Revert more updates of fixed CVEs in libde265
This reverts commit f5ccb5ef5b6175f466ba53e1556a9dafda7cd7d0.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ac91a2e0 by Tobias Frost at 2023-01-30T07:47:46+01:00
Reclaim modsecurity-crs
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
709f5572 by Tobias Frost at 2023-01-30T19:15:37+01:00
Reserve DLA-3293-1 for modsecurity-crs
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7d46c29b by Tobias Frost at 2023-01-22T12:58:44+01:00
Update bug numbers for CVE-2022-43245, CVE-2020-21596, CVE-2020-21594 (bugs
have been splitted)
- - - - -
1 changed file:
- data/CVE/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
78dc280a by Tobias Frost at 2023-01-20T16:27:15+01:00
Add additional infos for modsecurity-apache.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
07a1fd77 by Tobias Frost at 2022-11-03T23:27:56+01:00
Reserve DLA-3176-1 for clickhouse
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
004bd0cc by Tobias Frost at 2023-03-06T19:12:43+01:00
Mark libde265 CVE-2022-47664/CVE-2022-47665 as fixed by DLA-3352-1.
- - - - -
1 changed file:
- data/DLA/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7dd0c36f by Tobias Frost at 2023-03-09T20:22:09+01:00
Reserve DLA-3356-1 for wireless-regdb
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
47d63ba9 by Tobias Frost at 2023-03-09T22:30:38+01:00
Free DLA-3355-1
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
eb39682d by Tobias Frost at 2023-03-10T17:58:21+01:00
LTS: claim intel-microcode in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
95dfae46 by Tobias Frost at 2023-03-17T20:09:33+01:00
Document progress on intel-microcode.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c8114c8f by Tobias Frost at 2023-03-12T19:07:05+01:00
Document approach to intel-microcode.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
045a0647 by Tobias Frost at 2023-02-23T21:20:46+01:00
Reserve DLA-3340-1 for libgit2
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1c0b0c0e by Tobias Frost at 2023-02-26T14:32:28+01:00
LTS: claim firmware-nonfree in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
10a39f85 by Tobias Frost at 2023-02-26T20:15:02+01:00
Devices affected by CVE-2021-2323 and CVE-2021-44545 are not supported by
busters kernel. (Firmware files also not present in firmware-nonfree)
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ec9ad475 by Tobias Frost at 2023-03-04T08:04:20+01:00
Document progress on firmware-nonfree.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c0529747 by Tobias Frost at 2023-03-04T08:25:01+01:00
LTS: claim libde265 in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4349b1f3 by Tobias Frost at 2023-03-04T18:21:05+01:00
Reserve DLA-3352-1 for libde265
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
27ec5c5a by Tobias Frost at 2023-02-27T18:25:42+01:00
Revert Devices affected by CVE-2021-2323 and CVE-2021-44545 are not
supported by busters kernel. (Firmware files also not present in
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
312f67b1 by Tobias Frost at 2023-04-12T15:29:16+02:00
Reserve DLA-3390-1 for zabbix
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a4f40a27 by Tobias Frost at 2023-04-17T18:45:01+02:00
libxml2: Fixing links from old git.gnome.org to gitlab.gnome.org.
(Migrate URLs from old https://git.gnome.org/browse/libxml2/commit/?id= to
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
806e2cde by Tobias Frost at 2023-04-16T14:38:59+02:00
Revert Reserve DLA-3392-1 for syslog-ng
This reverts commit 8a1b7c9fe564aeaad9de70672bc1f6c3f544eaec.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8a1b7c9f by Tobias Frost at 2023-04-16T14:36:58+02:00
Reserve DLA-3392-1 for syslog-ng
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a962697e by Tobias Frost at 2023-04-01T10:47:53+02:00
Reserve DLA-3379-1 for intel-microcode
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
28c0f5e8 by Tobias Frost at 2023-04-01T16:05:16+02:00
Reserve DLA-3380-1 for firmware-nonfree
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6f234607 by Tobias Frost at 2023-04-07T22:33:09+02:00
Reserve DLA-3387-1 for udisks2
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8cb7a7fe by Tobias Frost at 2023-04-08T08:43:03+02:00
LTS: claim zabbix in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f07b6284 by Tobias Frost at 2023-04-09T18:39:25+02:00
CVE-2022-24918 is not affecting buster.
The vulnerable code -- session handling by cookies -- is not present
in 4.0.x. (patch part [0])
Upstream
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
df0a35de by Tobias Frost at 2023-04-09T18:20:53+02:00
CVE-2022-23134 is not affecting buster and bullseye:
Upstream comment [1] in upstream ticket ZBX-20384:
4.0 and 5.0 branches were excluded
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1a03fca3 by Tobias Frost at 2023-04-09T19:11:24+02:00
Triage CVE-2019-17382 for buster: Same situation as for stretch/jessie,
elaborate reason.
The problem is sane-default, which affects only new
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
05c65f6b by Tobias Frost at 2023-04-10T11:37:50+02:00
Reserve DLA-3387-2 for udisks2
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
30f8383b by Tobias Frost at 2023-04-10T16:04:12+02:00
CVE-2022-23132 is not affecting buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
53539005 by Tobias Frost at 2023-04-10T17:30:54+02:00
CVE-2022-40626/zabbix not affecting buster.
very likely introduced by commit
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e610a463 by Tobias Frost at 2023-04-10T17:34:46+02:00
ignore CVE-2022-43515/zabbix for buster, as it is ignored on all other releases
as well.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca530a19 by Tobias Frost at 2023-04-10T17:44:12+02:00
CVE-2022-46768/zabbix does not affect bullseye and buster, vulnerable feature
introduced in 5.4.0 only.
Vulnerable feature ticket:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9a78684a by Tobias Frost at 2023-04-05T19:25:00+02:00
LTS: claim udisks2 in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
49588c38 by Tobias Frost at 2023-03-21T16:11:52+01:00
LTS: claim firmware-nonfree in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bf331bf0 by Tobias Frost at 2023-02-05T16:48:48+01:00
wiresharks CVE-2022-4344 does not affect buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c2435b31 by Tobias Frost at 2023-02-05T14:45:13+01:00
wiresharks CVE-2022-3190 does not affect buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5308c1f4 by Tobias Frost at 2023-02-05T16:50:48+01:00
Replace possible fixing commit with one from the wireshark repo.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6898f7f2 by Tobias Frost at 2023-02-05T17:22:43+01:00
Add possible fixes for CVE-2022-4345 (wireshark)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d895a354 by Tobias Frost at 2023-02-06T17:23:27+01:00
CVE-2023-0414 (wireshark) is not affecting buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
97153541 by Tobias Frost at 2023-02-07T08:38:00+01:00
CVE-2023-0415 (wireshark) is not affecting buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e19dfaa3 by Tobias Frost at 2023-02-08T21:49:15+01:00
Reserve DLA-3313-1 for wireshark
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0f588121 by Tobias Frost at 2023-02-09T17:46:59+01:00
LTS: claim trafficserver in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
52bcd2ca by Tobias Frost at 2023-02-09T22:37:18+01:00
LTS: release claim on trafficserver in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
af108567 by Tobias Frost at 2023-02-05T09:13:29+01:00
LTS: claim wireshark in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4ca70a32 by Tobias Frost at 2023-07-02T18:54:45+02:00
Triage packages with embedded code copies of yajl for CVE-2022-24795,
CVE-2017-16516 and CVE-2023-33460
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0b62bb6d by Tobias Frost at 2023-07-02T19:20:51+02:00
xqilla also embeds yajl, is vulnerable to CVE-2017-16516 and CVE-2022-24795.
- - - - -
2 changed files:
- data/CVE/list
-
1 - 100 of 198 matches
Mail list logo