[Git][security-tracker-team/security-tracker][master] automatic update

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 2bba8e31 by security tracker role at 2020-01-15T08:10:21+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] NFUs

2020-01-15 Thread Moritz Muehlenhoff
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: d074fd77 by Moritz Muehlenhoff at 2020-01-15T09:18:48+01:00 NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] NFUs

2020-01-15 Thread Moritz Muehlenhoff
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 6477b163 by Moritz Muehlenhoff at 2020-01-15T09:51:24+01:00 NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] 2 commits: Process some NFUs

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ec26011f by Salvatore Bonaccorso at 2020-01-15T09:51:43+01:00 Process some NFUs - - - - - 25a2feb6 by Salvatore Bonaccorso at 2020-01-15T10:10:47+01:00 Merge remote-tracking branch 'origin/mast

[Git][security-tracker-team/security-tracker][master] dla: take openjdk-7

2020-01-15 Thread Emilio Pozuelo Monfort
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 04a9ac41 by Emilio Pozuelo Monfort at 2020-01-15T10:41:58+01:00 dla: take openjdk-7 - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/d

[Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-7053/linux

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 177cf456 by Salvatore Bonaccorso at 2020-01-15T16:28:24+01:00 Update information for CVE-2020-7053/linux - - - - - 1 changed file: - data/CVE/list Changes: ===

[Git][security-tracker-team/security-tracker][master] NFUs

2020-01-15 Thread Moritz Muehlenhoff
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7883b435 by Moritz Muehlenhoff at 2020-01-15T16:40:43+01:00 NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] vbox fixed

2020-01-15 Thread Moritz Muehlenhoff
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 5e415dd1 by Moritz Muehlenhoff at 2020-01-15T17:51:47+01:00 vbox fixed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list ===

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-14868/ksh

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d250ac2a by Salvatore Bonaccorso at 2020-01-15T18:01:06+01:00 Add Debian bug reference for CVE-2019-14868/ksh - - - - - 1 changed file: - data/CVE/list Changes: ==

[Git][security-tracker-team/security-tracker][master] mesa fixed in sid a while ago

2020-01-15 Thread Moritz Muehlenhoff
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 42abfaa3 by Moritz Muehlenhoff at 2020-01-15T18:06:51+01:00 mesa fixed in sid a while ago add libexif to dsa-needed - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2019-5068/mesa was already fixed in earlier version based on 19.2.x

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 69c45b50 by Salvatore Bonaccorso at 2020-01-15T18:25:56+01:00 CVE-2019-5068/mesa was already fixed in earlier version based on 19.2.x The fix is as well usptream backported in 19.2.x branch as

[Git][security-tracker-team/security-tracker][master] dla: claim tomcat7

2020-01-15 Thread Sylvain Beucler
Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker Commits: 16b44f62 by Sylvain Beucler at 2020-01-15T18:36:19+01:00 dla: claim tomcat7 - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt =

[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-14868/ksh via unstable

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8cd6ea11 by Salvatore Bonaccorso at 2020-01-15T19:11:57+01:00 Add fixed version for CVE-2019-14868/ksh via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2016-10894/xtrlock as no-dsa

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b70de4f4 by Salvatore Bonaccorso at 2020-01-15T20:03:15+01:00 Mark CVE-2016-10894/xtrlock as no-dsa - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] dla: apo tells me he's working on tomcat7, transfering

2020-01-15 Thread Sylvain Beucler
anges: = data/dla-needed.txt = @@ -118,7 +118,9 @@ thunderbird (Emilio) -- tigervnc -- -tomcat7 (Sylvain Beucler) +tomcat7 (Markus Koschany) + NOTE: 20200115: https://people.debian.org/~apo/tomcat7/ + NOTE: 20200115: waiting for sunweaver

[Git][security-tracker-team/security-tracker][master] automatic update

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e42f0340 by security tracker role at 2020-01-15T20:10:24+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Process two NFUs

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c3bef37f by Salvatore Bonaccorso at 2020-01-15T21:25:29+01:00 Process two NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] Process NFUs

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 873cc2c0 by Salvatore Bonaccorso at 2020-01-15T21:30:27+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] Process many Oracle specific CVEs as NFU

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5e54012a by Salvatore Bonaccorso at 2020-01-15T21:44:45+01:00 Process many Oracle specific CVEs as NFU - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2015-1850 was REJECTED and withdrawn by the assigning CNA

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d54245b6 by Salvatore Bonaccorso at 2020-01-15T22:02:22+01:00 CVE-2015-1850 was REJECTED and withdrawn by the assigning CNA - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2019-2224 was REJECTED (duplicate of CVE-2019-15140)

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e421f331 by Salvatore Bonaccorso at 2020-01-15T22:04:02+01:00 CVE-2019-2224 was REJECTED (duplicate of CVE-2019-15140) - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Track one ancient CVE for linux

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 53b42e78 by Salvatore Bonaccorso at 2020-01-15T22:07:55+01:00 Track one ancient CVE for linux - - - - - 1 changed file: - data/CVE/list Changes: = data

[Git][security-tracker-team/security-tracker][master] 2 commits: Move two NFUs to src:systrace

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6a53b1c2 by Salvatore Bonaccorso at 2020-01-15T22:14:50+01:00 Move two NFUs to src:systrace - - - - - 1146704d by Salvatore Bonaccorso at 2020-01-15T22:15:18+01:00 Add CVE-2007-4773 - - - - -

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-7058/cacti

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: da008fe5 by Salvatore Bonaccorso at 2020-01-16T06:35:27+01:00 Add CVE-2020-7058/cacti - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/lis

[Git][security-tracker-team/security-tracker][master] Correct status on CVE-2019-12111/miniupnpd for stretch

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: cc378b4b by Salvatore Bonaccorso at 2020-01-16T06:52:53+01:00 Correct status on CVE-2019-12111/miniupnpd for stretch The copyIPv6IfDifferent helper was only introduce in https://github.com/mini

[Git][security-tracker-team/security-tracker][master] Add CVE-2018-11751/puppet

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 89956942 by Salvatore Bonaccorso at 2020-01-16T07:21:33+01:00 Add CVE-2018-11751/puppet For now kept it as undetermined, but it looks as per references that the issue is fixed in 6.4.0 upstream

[Git][security-tracker-team/security-tracker][master] Process NFUs

2020-01-15 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a0a07e53 by Salvatore Bonaccorso at 2020-01-16T07:57:17+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =