Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
650c7585 by Ola Lundqvist at 2018-05-07T22:31:46+02:00
Severe enough to fix.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5dcf7527 by Ola Lundqvist at 2018-05-10T21:03:12+02:00
Triage result.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
187a0967 by Ola Lundqvist at 2018-05-13T19:49:09+02:00
Found that spice-gtk is not affected as the demarchal.py file that was
vulnerable is not included in any binary package.
- - - - -
1 changed
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9082b3be by Ola Lundqvist at 2018-08-30T20:16:15Z
Add more information about the gnutls vulnerabilities.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
11887f90 by Ola Lundqvist at 2018-08-31T11:01:38Z
Claim gnutls.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bdd83b5e by Ola Lundqvist at 2018-07-09T20:47:53+02:00
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
94b4e6c6 by Ola Lundqvist at 2018-07-06T14:46:22+02:00
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f562c94f by Ola Lundqvist at 2018-06-24T15:17:02+02:00
Added some entries about packages fixed in wheezy and notes about this.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e422e145 by Ola Lundqvist at 2018-10-24T20:55:28Z
Since cairo has been added to ELTS (wheezy) and the issue looks rather serious
we should add it for LTS too.
- - - - -
1 changed file:
- data/dla
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cc85dabb by Ola Lundqvist at 2018-11-14T20:22:30Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f1bf7a9d by Ola Lundqvist at 2018-11-13T20:49:55Z
Triage result.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ce1b4087 by Ola Lundqvist at 2018-11-13T20:15:35Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d51123f3 by Ola Lundqvist at 2018-09-21T18:46:21Z
Triage results.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
df160c16 by Ola Lundqvist at 2018-09-21T18:44:01Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3c162a3a by Ola Lundqvist at 2018-09-22T08:54:39Z
Some more information.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7f6079f9 by Ola Lundqvist at 2018-09-19T18:23:00Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c8607cd5 by Ola Lundqvist at 2018-09-19T18:35:48Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2558c51f by Ola Lundqvist at 2019-01-19T22:02:31Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3e2f429c by Ola Lundqvist at 2019-01-19T22:14:49Z
Nettle conclusion.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
eaf26e42 by Ola Lundqvist at 2019-01-19T22:42:58Z
Changed decision about nettle update.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d14f475b by Ola Lundqvist at 2018-12-12T22:59:43Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6b4aedae by Ola Lundqvist at 2018-12-13T20:39:44Z
Triage results.
- - - - -
3 changed files:
- data/CVE/list
- data/dla-needed.txt
- data/dsa-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b3a4d473 by Ola Lundqvist at 2018-12-13T21:04:40Z
Triage results.
- - - - -
3 changed files:
- data/CVE/list
- data/dla-needed.txt
- data/dsa-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d7d0cd4e by Ola Lundqvist at 2018-12-13T21:20:31Z
Triaged some for stretch as it was already done for jessie.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
095d0779 by Ola Lundqvist at 2018-12-16T11:18:26Z
Some more notes about wordpress analysis.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8a6a81e8 by Ola Lundqvist at 2018-12-15T11:52:29Z
Maintainer feedback.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
321b6902 by Ola Lundqvist at 2018-11-17T15:44:48Z
Triage results.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3b4c56da by Ola Lundqvist at 2018-12-28T20:00:19Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ab0d1caa by Ola Lundqvist at 2018-12-28T22:29:31Z
Adding myself to LTS frontdesk.
- - - - -
1 changed file:
- org/lts-frontdesk.2019.txt
Changes:
=
org/lts
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3b3cf7ec by Ola Lundqvist at 2019-01-09T20:52:11Z
Still no fix for cairo.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
619fcc88 by Ola Lundqvist at 2019-01-09T21:24:21Z
Claiming nettle.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3663335e by Ola Lundqvist at 2018-09-17T19:56:16Z
First triaging results. One following debian security team the other one not.
It is not severe enough.
- - - - -
2 changed files:
- data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
82b613db by Ola Lundqvist at 2018-09-17T20:23:43Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0358c518 by Ola Lundqvist at 2018-09-18T20:19:43Z
Adding php5.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1c8b4b38 by Ola Lundqvist at 2018-09-18T20:26:06Z
Adding spamassassin.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5d805406 by Ola Lundqvist at 2018-09-19T06:37:20Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bf34228f by Ola Lundqvist at 2018-09-19T06:28:14Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ce939df4 by Ola Lundqvist at 2018-09-17T11:02:49Z
Reassigning myself.
- - - - -
1 changed file:
- org/lts-frontdesk.2018.txt
Changes:
=
org/lts-frontdesk.2018
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
913f49a8 by Ola Lundqvist at 2019-03-31T19:52:21Z
Corrected CVE entry.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d33e2ed1 by Ola Lundqvist at 2019-03-31T15:02:58Z
Claiming clamav.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b2b0cb7d by Ola Lundqvist at 2019-03-31T19:24:48Z
Marked three CVEs as not-affected since they were introduced in 0.101.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
831b74e7 by Ola Lundqvist at 2019-02-06T22:02:42Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
de0bbddb by Ola Lundqvist at 2019-02-09T14:51:07Z
Triage result.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cec172d5 by Ola Lundqvist at 2019-02-10T15:55:32Z
An alternative triage script that works if the json sync is not working.
- - - - -
1 changed file:
- + bin/lts-alt-cve-triage.sh
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f043af36 by Ola Lundqvist at 2019-02-10T16:37:02Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ec106d5d by Ola Lundqvist at 2019-02-10T21:37:24Z
Triage result.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bd7f54d8 by Ola Lundqvist at 2019-02-10T21:32:45Z
Libsdl should be fixed. Missed in last commit.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7676f052 by Ola Lundqvist at 2019-02-05T22:22:40Z
Think libarchive is worth fixing.
- - - - -
a89cf7a5 by Ola Lundqvist at 2019-02-05T22:22:40Z
Triage results.
- - - - -
1 changed file:
- data/dla
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5a8310da by Ola Lundqvist at 2019-02-05T22:50:44Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9e188394 by Ola Lundqvist at 2019-02-05T22:47:30Z
Triage results.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
101fbdd2 by Ola Lundqvist at 2019-02-03T22:02:42Z
Triage results.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8b470df2 by Ola Lundqvist at 2019-04-06T22:33:25Z
Adding myself to triaging work in May.
- - - - -
1 changed file:
- org/lts-frontdesk.2019.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
09e8077d by Ola Lundqvist at 2019-04-15T17:33:12Z
Re-claim it with a note.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
49a6d889 by Ola Lundqvist at 2019-04-15T19:10:03Z
More notes about clamav.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
94190ded by Ola Lundqvist at 2019-06-09T22:16:22Z
CVE-2017-1000600 and CVE-2018-1000773 are for the same underlying problem in
wordpress.
It is clear that there are a number of pre-conditions
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e49e5e69 by Ola Lundqvist at 2019-06-09T22:40:29Z
Investigated CVE-2019-9858 and determined that Debian is vulnerable but
not in the mentioned way. The path does not exist so a backdoor
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bb564ba9 by Ola Lundqvist at 2019-05-09T20:52:21Z
Row security was not introduced in 9.4 so CVE-2019-10130 cannot be a problem
for jessie.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e73813ed by Ola Lundqvist at 2019-05-09T20:34:17Z
Triaging results. Two CVEs ignored for jessie following stretch decision.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d87fdd03 by Ola Lundqvist at 2019-05-09T21:10:37Z
Triaged advancecomp for jesise. Marking two CVEs as ignored following decision
for stretch.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a97a36f8 by Ola Lundqvist at 2019-05-11T21:12:34Z
Ignoring CVE-2019-6470 following decision for stretch.
- - - - -
0185a0b3 by Ola Lundqvist at 2019-05-11T21:17:32Z
Ignoring CVE-2017-12839 and CVE
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
35cbf3c2 by Ola Lundqvist at 2019-05-11T21:33:21Z
Adding openjdk-7 to the list of packages to fix for jessie. Sounds serious
enough.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2faba7b3 by Ola Lundqvist at 2019-05-12T18:59:41Z
At least the jessie version is vulnerable to CVE-2018-19969 and since it is the
oldest version I think all later are also vulnerable. Therefore
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
27463a2c by Ola Lundqvist at 2019-05-12T17:05:16Z
Adding ruby-omniauth to the list of packages to fix for jessie.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
089be807 by Ola Lundqvist at 2019-04-22T11:02:22Z
Reserve DLA-1759-1 for clamav
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
946247ec by Ola Lundqvist at 2019-09-30T18:16:07Z
Added jython and pypy-lib for CVE-2019-16935 and marked all jessie packages as
ignored.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a9a7ac5d by Ola Lundqvist at 2019-09-30T18:36:39Z
Added statement that python2.7 should probably not be fixed but it is up to
Mike to remove the DLA needed entry.
- - - - -
1 changed file:
- data
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
99ed9bd3 by Ola Lundqvist at 2019-11-05T17:27:56Z
Reserve DLA-1981-1 for cpio
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7bb3f3d1 by Ola Lundqvist at 2019-12-03T20:11:47Z
Add myself for front desk assignment.
- - - - -
1 changed file:
- org/lts-frontdesk.2020.txt
Changes:
=
org
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a1affdce by Ola Lundqvist at 2019-12-16T18:19:14Z
Looked into libexif and noted the results.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ca93924e by Ola Lundqvist at 2019-12-16T18:21:20Z
Added my own name so people know who added the note.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
76ab9aed by Ola Lundqvist at 2019-10-24T13:16:19Z
Marking libcrypt++ CVE as no-dsa since it was done also for buster and stretch.
Similar issues exist in libcrypt in the past and it was too not fixed
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e821dc95 by Ola Lundqvist at 2019-10-24T13:41:42Z
All the hdf5 issues are DoS class vulnerabilities and marked as no-dsa for
buster and stretch. There is no need to fix it for jessie in this case
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
49293a7d by Ola Lundqvist at 2019-10-29T20:25:07Z
Adding cpio to dla-needed and claiming it. Did this since I take this package
for ELTS as well.
- - - - -
1 changed file:
- data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
05f6f806 by Ola Lundqvist at 2020-02-10T21:01:32+01:00
Assigning myself to some more work.
- - - - -
1 changed file:
- org/lts-frontdesk.2020.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b1002d03 by Ola Lundqvist at 2020-02-26T07:31:41+01:00
Adding rake to dla-needed.txt. Simple to fix.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b6139950 by Ola Lundqvist at 2020-02-26T07:51:05+01:00
Added libspring-java to dla-needed with a note that it is not completely
triaged. Will continue later.
- - - - -
1 changed file:
- data/dla
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a29b683d by Ola Lundqvist at 2020-02-29T12:37:25+01:00
Added php5 to dla needed. Vulnerable also in php5.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a042dd95 by Ola Lundqvist at 2020-02-27T07:05:54+01:00
Added lua-cgi to the dla-needed list with a note that one possibility is to
declare it unsupported.
- - - - -
1 changed file:
- data/dla
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6cbebbf5 by Ola Lundqvist at 2020-02-25T07:55:37+01:00
CVE-2020-9365 marked as not affected since the vulnerable function does not
exist in the jessie version of pure-ftpd. Instead of the vulnerable
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
db0a45c8 by Ola Lundqvist at 2020-02-25T07:43:15+01:00
Marking two CVEs as ignoed for jessie following Debian Secutity Team decision
for later releases.
- - - - -
1 changed file:
- data/CVE/list
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bd4edf72 by Ola Lundqvist at 2020-02-25T07:47:32+01:00
Marked CVE-2020-9369 as not affected for jessie as well.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5ba438cf by Ola Lundqvist at 2020-02-27T20:43:47+01:00
Marked three vulnerabilities for wireshark as postponed.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bcdf3a8a by Ola Lundqvist at 2020-02-27T20:08:51+01:00
Marked CVE-2020-6802 as not affected for jessie. The vulnerable functionality
does not exist in this version.
- - - - -
1 changed file
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
55b8e704 by Ola Lundqvist at 2020-02-27T20:30:55+01:00
CVE-2017-6363 marked as ignored for jessie following Debian Secutiry team.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4176e72c by Ola Lundqvist at 2020-02-27T22:57:55+01:00
Changed python-bleach CVE from not-affected to ignored. Salvatore pointed out
that it was a wrong conclusion but the fix is too invasive
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d69892a5 by Ola Lundqvist at 2020-01-27T20:36:19+01:00
Otrs2 is in non-free and not in packages to support list, marking the CVEs as
unsupported.
- - - - -
03c50f9d by Ola Lundqvist at 2020-01-27T20
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6f229ce5 by Ola Lundqvist at 2020-01-29T20:34:48+01:00
Mark nethack as eol.
- - - - -
3b31bf2e by Ola Lundqvist at 2020-01-29T20:34:49+01:00
CVE-2019-20433 marked as ignored for jessie following
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
799a0d36 by Ola Lundqvist at 2020-01-29T20:57:28+01:00
Java libxmlrpc3 needs to be updated.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6cd421c4 by Ola Lundqvist at 2020-01-31T08:00:31+01:00
To fix spamassassin.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
550835b5 by Ola Lundqvist at 2020-01-31T07:56:05+01:00
Safest to fix.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b115fa43 by Ola Lundqvist at 2020-01-31T08:09:26+01:00
Just thunderbird was fixed it looks like.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d042d8f8 by Ola Lundqvist at 2020-01-31T21:23:02+01:00
Tagged CVE-2020-8432 as ignored in jessie for u-boot following decision for
stretch.
- - - - -
aece597c by Ola Lundqvist at 2020-01-31T21:23:03
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d0591177 by Ola Lundqvist at 2020-02-02T20:19:52+01:00
Marked a few CVEs as ignored for jessie following decision for stretch.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0ce8e459 by Ola Lundqvist at 2020-02-03T20:48:48+01:00
Reverted decision that CVE-20208492 is a minor issue.
- - - - -
1 changed file:
- data/CVE/list
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
63003847 by Ola Lundqvist at 2020-02-03T20:57:44+01:00
Decided that CVE-2020-8592 is important enough to fix.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e4338bf0 by Ola Lundqvist at 2020-02-19T21:14:19+01:00
Noted that intel-microcode is postponed in buster and strech. The same can be
done for LTS.
- - - - -
bd3aa6c4 by Ola Lundqvist at 2020-02
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ef189a3b by Ola Lundqvist at 2020-01-19T22:40:20+01:00
Noted that all open CVEs on ansible are marked as no-dsa for Buster and
Stretch. No reason to treat Jessie differently.
- - - - -
2 changed
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
87322fcf by Ola Lundqvist at 2020-01-19T22:12:38+01:00
Concluded that the mentioned code is in place for jessie but the vulnerability
is minor. It is possible to execute arbitrary arithmetic
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
570671f5 by Ola Lundqvist at 2020-01-20T22:27:53+01:00
Added information about the squid3 patch analysis made.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
746ff9c5 by Ola Lundqvist at 2020-04-04T13:16:37+02:00
Firefox seems to have a critical vulnerability needing a fix.
- - - - -
18180eda by Ola Lundqvist at 2020-04-04T13:22:54+02:00
No update needed
1 - 100 of 388 matches
Mail list logo