Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b2394717 by Tobias Frost at 2024-05-04T17:15:59+02:00
Reserve DLA-3808-1 for intel-microcode
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
60da1161 by Tobias Frost at 2024-04-28T08:09:24+02:00
Reserve DLA-3797-1 for frr
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dff6b48e by Tobias Frost at 2024-04-27T18:00:31+02:00
CVE-2024-31951/frr buster and bullseye is not affected
Vulnerable feature (Link State Data Base) has been introduced in 8.0 (first
version
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0fad262c by Tobias Frost at 2024-04-27T12:17:47+02:00
CVE-2024-31950/frr buster and bullseye is not affected
Vulnerable feature (Link State Data Base) has been introduced in 8.0 (first
version
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9fe826e2 by Tobias Frost at 2024-04-27T10:56:43+02:00
CVE-2024-27913/frr buster and bullseye is not affected
Vulnerable feature has been introduced in 8.0 (first version containing commit
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9d557633 by Tobias Frost at 2024-04-27T10:21:11+02:00
CVE-2023-47235/frr add reference to upstream pull requests.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3c8638eb by Tobias Frost at 2024-04-21T20:33:05+02:00
Add MR reference for CVE-2022-26128/frr and CVE-2022-26129/frr
They are both fixed by the same patch.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e7d6304e by Tobias Frost at 2024-04-21T20:09:56+02:00
CVE-2022-26127/frr add PR that fixes the issue.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3556f07b by Tobias Frost at 2024-04-21T19:55:30+02:00
CVE-2022-26126/frr - add upstream PR fix.
This time adding to the correct CVE, c49e7ebcbdc95ccda3200e3831b29b84d4f5ef38
accidentially added it to
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c49e7ebc by Tobias Frost at 2024-04-21T10:18:29+02:00
CVE-2022-26126/frr - add upstream PR fix.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
797a96c1 by Tobias Frost at 2024-04-20T17:16:52+02:00
CVE-2022-26125/frr add link to PR fixing issue.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1cf89abb by Tobias Frost at 2024-04-13T17:46:24+02:00
LTS: claim frr in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
22b0e152 by Tobias Frost at 2024-04-07T09:14:11+02:00
Reserve DLA-3783-1 for expat
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a5496f2d by Tobias Frost at 2024-03-27T07:08:16+01:00
CVE-2013-0340/expat add upstream reference to PR fixing the issue.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
94412bd7 by Tobias Frost at 2024-03-25T17:29:25+01:00
Progress note on expat.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
60343264 by Tobias Frost at 2024-03-10T20:13:31+01:00
LTS: claim expat in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
62d36b43 by Tobias Frost at 2024-03-10T18:59:30+01:00
LTS: release claim on nss in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e494cd25 by Tobias Frost at 2024-03-10T18:58:45+01:00
Reserve DLA-3757-1 for nss.
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4ed4d895 by Tobias Frost at 2024-02-27T21:19:17+01:00
dla-needed.txt: Add upstream response for CVE-2023-6135/nss
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3e5b31b1 by Tobias Frost at 2024-02-27T06:24:25+01:00
LTS: claim nss in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dcbb8807 by Tobias Frost at 2024-02-19T20:56:17+01:00
CVE-2023-5388/nss Add upstream patch reference.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3926f7c1 by Tobias Frost at 2024-02-17T16:13:47+01:00
Reserve DLA-3734-1 for openvswitch
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f508ab99 by Tobias Frost at 2024-02-10T09:35:14+01:00
CVE-2024-22563/openvswitch buster is not vulnerable.
The memory leak was introduced with commit
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
abbf2a15 by Tobias Frost at 2024-02-10T08:49:58+01:00
CVE-2023-3966/openvswitch - buster is not affected
Vulnerable code introduced in 2.11.0, buster is at 2.10.7.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
367677e5 by Tobias Frost at 2024-02-10T07:47:30+01:00
LTS: claim openvswitch in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
19b117a2 by Tobias Frost at 2024-02-09T20:25:59+01:00
Document progress on nss:
NOTE: 20240209: Tried to backport patches for CVE-2023-6135, however it is
unclear which bits are required or if the
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e643f071 by Tobias Frost at 2024-02-04T11:42:15+01:00
LTS: claim nss in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7eaa9a46 by Tobias Frost at 2024-01-24T22:06:55+01:00
Reserve DLA-3717-1 for zabbix
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
016eb657 by Tobias Frost at 2024-01-23T20:14:20+01:00
s/ttps/https
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
36e9a771 by Tobias Frost at 2024-01-23T20:13:31+01:00
CVE-2023-32727/zabbix - buster is not affected.
The vulnerability is a format-string vulnerability, a user provided input
(dst - intented to be a
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c7631825 by Tobias Frost at 2024-01-23T18:59:00+01:00
CVE-2023-32728/zabbix (buster) vulnerable code introduced later.
Vulnerable feature was introduced with this ticket:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a116f30b by Tobias Frost at 2024-01-22T20:09:30+01:00
LTS: claim zabbix in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
43cb8dd4 by Tobias Frost at 2024-01-21T17:36:17+01:00
CVE-2023-32725/zabbix not affecting buster
The vulnerable report_manager has been first part of a release with version
6.0.0alpha,
The buster
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1cb1b17e by Tobias Frost at 2024-01-16T06:03:39+01:00
Remove paramiko from dla-needed.txt
CVE-2023-48795/paramiko buster is not vulnerable.
Confirmed by upstream:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ee075469 by Tobias Frost at 2024-01-16T06:01:28+01:00
Fix entry for CVE-2023-36464/pypdf (bookworm)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ff3a5576 by Tobias Frost at 2024-01-14T17:29:22+01:00
CVE-2023-48795/paramiko buster is not vulnerable.
Confirmed by upstream:
https://github.com/paramiko/paramiko/issues/2337#issuecomment-1880185735
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ad1739ca by Tobias Frost at 2024-01-07T08:42:12+01:00
LTS: claim paramiko in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
94b52c9f by Tobias Frost at 2024-01-07T08:42:23+01:00
LTS: claim zabbix in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
edcd64ff by Tobias Frost at 2023-12-24T12:05:17+01:00
LTS: claim haproxy in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4b3918fb by Tobias Frost at 2023-12-23T08:34:22+01:00
Reserve DLA-3693-1 for osslsigncode
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f0ad6d03 by Tobias Frost at 2023-12-21T20:42:27+01:00
LTS: claim osslsigncode in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
966fb609 by Tobias Frost at 2023-12-16T18:29:35+01:00
Reserve DLA-3690-1 for intel-microcode
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a48de1ef by Tobias Frost at 2023-12-16T09:24:00+01:00
LTS: claim intel-microcode in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ad87ff39 by Tobias Frost at 2023-12-03T10:45:09+01:00
Reserve DLA-3681-1 for amanda
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ccd23215 by Tobias Frost at 2023-12-03T10:42:18+01:00
CVE-2016-10729/amanda fixed with 1:3.3.9-1
This vulnerability was fixed with the introduction of the security file, (man
amanda-security.conf).
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4198326a by Tobias Frost at 2023-12-03T10:40:00+01:00
CVE-2016-10730/amanda fixed with 1:3.3.9-1
This vulnerability was fixed with the introduction of the security file, (man
amanda-security.conf).
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
392af420 by Tobias Frost at 2023-12-03T09:29:06+01:00
Reserve DLA-3680-1 for opendkim
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0c2de437 by Tobias Frost at 2023-11-25T15:49:07+01:00
opendkim has a RFS fixing the CVE - asked sponsoree details about confidence.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e3ef3824 by Tobias Frost at 2023-11-25T15:35:22+01:00
LTS: claim opendkim in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a63f0bd4 by Tobias Frost at 2023-11-19T20:26:07+01:00
LTS: claim amanda in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5e7c4ebe by Tobias Frost at 2023-11-18T22:38:14+01:00
Reserve DLA-3655-1 for lwip
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
db650aba by Tobias Frost at 2023-11-18T18:06:18+01:00
CVE-2020-22284/lwip buster not affected
The vulnerable code is in the 6LowPAN encapsulation for ZEP (ZigBee
Enxapsulation Protocol),
which as
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f8f15618 by Tobias Frost at 2023-11-18T13:11:58+01:00
LTS: claim lwip in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9cdaaddf by Tobias Frost at 2023-11-17T18:28:16+01:00
Fix typo in list of affected CVEs for DLA-3654-1
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a1595abf by Tobias Frost at 2023-11-17T18:17:04+01:00
Reserve DLA-3654-1 for freerdp2
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
818ee323 by Tobias Frost at 2023-11-12T12:47:57+01:00
CVE-2022-39282 and CVE-2022-39283 (freerdp2) - link to likely patch
Note: It has not been confirmed if this is the correct patch, but comparing
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
54629370 by Tobias Frost at 2023-11-12T11:57:42+01:00
CVE-2021-41160/freerdp2 - buster backport is not feasible, setting to ignored.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca3230ff by Tobias Frost at 2023-11-07T07:16:37+01:00
relcaim freerdp2, update status.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f9985ab0 by Tobias Frost at 2023-11-01T08:19:49+01:00
document embedded-code copy of enet in assaultcube.
- - - - -
1 changed file:
- data/embedded-code-copies
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c8f919ca by Tobias Frost at 2023-10-22T10:55:04+02:00
Add note that Im still wokring on the package.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4e3e9192 by Tobias Frost at 2023-10-22T10:28:58+02:00
CVE-2023-29454/zabbix - buster does not have the affected Go agent.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2a359dd4 by Tobias Frost at 2023-10-22T10:18:13+02:00
CVE-2023-32721/zabbix, add potential upstream fix.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7661cd41 by Tobias Frost at 2023-10-22T09:52:56+02:00
CVE-2023-32723/zabbix, identified upstream fix.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2b1225ec by Tobias Frost at 2023-10-21T12:25:50+02:00
Add version for DLA-3538-2
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2fff31fc by Tobias Frost at 2023-10-21T12:09:11+02:00
DLA-3538-2 zabbix - regression update.
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3444d5a6 by Tobias Frost at 2023-10-07T20:14:56+02:00
Readd freerdp2, missed a few CVEs.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a2b73022 by Tobias Frost at 2023-10-07T20:12:43+02:00
DLA-3606-1 Fix wrong number in CVE, paste error
s/CVE-2023-39357/CVE-2023-40567/
- - - - -
1 changed file:
- data/DLA/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c0436bd8 by Tobias Frost at 2023-10-07T19:35:16+02:00
Reserve DLA-3608-1 for vinagre
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9fad6642 by Tobias Frost at 2023-10-07T19:34:57+02:00
Reserve DLA-3607-1 for gnome-boxes
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
data/DLA/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
39e68e24 by Tobias Frost at 2023-10-07T19:34:11+02:00
Reserve DLA-3606-1 for freerdp2
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
04a56826 by Tobias Frost at 2023-10-07T12:15:20+02:00
Fix typo in version for CVE-2023-39356/freerdp2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
54c94596 by Tobias Frost at 2023-10-07T12:12:59+02:00
swap order of patches for CVE-2023-39353, as they have to be applied in that
order.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
677ea8f5 by Tobias Frost at 2023-10-04T19:35:11+02:00
freerdp2: Add patches fixing CVEs (see complete commit message for details)
Asked Upstream to associate CVEs with commit ids (via IRC,
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
35c2267b by Tobias Frost at 2023-10-03T13:01:28+02:00
Revert identified potential patch for CVE-2023-39353/freerdp2
This reverts commit e345b33f305d9f11ad03283806e743dc8039e7a5.
(I think this was a
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e345b33f by Tobias Frost at 2023-10-03T12:42:05+02:00
identified potential patch for CVE-2023-39353/freerdp2
- - - - -
21a3763b by Tobias Frost at 2023-10-03T12:48:48+02:00
Potential patch for
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6e4431cb by Tobias Frost at 2023-10-01T20:59:15+02:00
Mark CVE-2022-29654 the same at its duplicate, CVE-2022-44370
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c85b6e56 by Tobias Frost at 2023-10-01T20:19:43+02:00
CVE-2022-40626/zabbix : Mark no-dsa for buster as well, for consitency.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ede66f4a by Tobias Frost at 2023-10-01T11:29:48+02:00
Unclaim and remove nasm from dla-needed.txt, as suggested by rouca to me via
IRC. (documenation part)
- - - - -
4234bbc9 by Tobias Frost at
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7bc895d4 by Tobias Frost at 2023-09-30T21:58:31+02:00
LTS: claim freerdp2 in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8b749e7e by Tobias Frost at 2023-09-30T21:09:40+02:00
Reserve DLA-3596-1 for firmware-nonfree
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a6ae9e9c by Tobias Frost at 2023-09-24T13:44:30+02:00
LTS: claim firmware-nonfree in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
487d8afa by Tobias Frost at 2023-09-24T09:41:12+02:00
LTS: claim nasm in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d5b5bbc0 by Tobias Frost at 2023-09-24T09:40:46+02:00
LTS: claim suricata in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74756a30 by Tobias Frost at 2023-09-10T16:16:23+02:00
Revert 535390052, CVE-2022-40626/zabbix after revisting patch for jessie
Im not sure anymore if it has been introduced later
and re-evaluation for
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
70191a27 by Tobias Frost at 2023-08-23T10:23:08+02:00
Drop CVE-2022-35229 from data/DLA/list, as it had been fixed (security wise) in
the previous upload already.
- - - - -
1 changed file:
-
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ef3a2751 by Tobias Frost at 2023-08-22T15:20:30+02:00
Reserve DLA-3538-1 for zabbix
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
81868f3b by Tobias Frost at 2023-08-12T07:09:05+02:00
Document zabbix state before VAC.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ffcfffec by Tobias Frost at 2023-08-11T10:38:36+02:00
Add links to patches for CVE-2023-29450/zabbix
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
df2eb1ce by Tobias Frost at 2023-08-11T09:35:28+02:00
CVE-2023-29449/zabbix does not affect buster.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4b21c5fb by Tobias Frost at 2023-08-09T18:42:38+02:00
Triaging zabbix with focus LTS/buster
CVE-2023-29458: duktape library only introduced in 5.0.0alpha1
CVE-2023-29452: geomap widget only introduced
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
01ca788f by Tobias Frost at 2023-08-02T15:31:55+02:00
LTS: claim zabbix in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
061d1368 by Tobias Frost at 2023-07-25T06:51:25+02:00
Reserve DLA-3501-1 for renderdoc
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d9e204ad by Tobias Frost at 2023-07-19T15:58:31+02:00
xqillas embedded yajl is not affected by CVE-2017-16516 and CVE-2022-24795
(The embedded yajl version is around 0.2.2.)
- - - - -
1 changed
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
860b1155 by Tobias Frost at 2023-07-18T16:50:04+02:00
fix data/dla-needed.txt
stray ^S broke lts tool.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2172c314 by Tobias Frost at 2023-07-15T15:25:50+02:00
Document xqilla triage for buster. (embedded yajl ancient, not vulnerable to
this CVEs.)
- - - - -
1 changed file:
- data/dla-needed.txt
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c254af04 by Tobias Frost at 2023-07-15T15:23:12+02:00
xqillas yajl is ancienct, around 0.2.2 and is not vulnerable to
CVE-2017-16516 and CVE-2022-24795.
- - - - -
1 changed file:
- data/CVE/list
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
51e0b152 by Tobias Frost at 2023-07-11T19:45:57+02:00
Reserve DLA-3492-1 for yajl
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
579fcfc2 by Tobias Frost at 2023-07-11T18:29:14+02:00
LTS: claim xqilla in dla-needed.txt
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
13fdba2a by Tobias Frost at 2023-07-08T15:51:42+02:00
Reserve DLA-3487-1 for fusiondirectory
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Tobias Frost pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e352c46c by Tobias Frost at 2023-07-08T15:47:39+02:00
Reserve DLA-3486-1 for ocsinventory-server
- - - - -
1 changed file:
- data/DLA/list
Changes:
=
1 - 100 of 198 matches
Mail list logo