[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-5660/trafficserver

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 778f0225 by Salvatore Bonaccorso at 2018-02-28T08:08:44+01:00 Add CVE-2017-5660/trafficserver - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-7671/trafficserver

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3286bb84 by Salvatore Bonaccorso at 2018-02-28T08:07:32+01:00 Add CVE-2017-7671/trafficserver - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process CVE-2017-12191 as NFU

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 49020d87 by Salvatore Bonaccorso at 2018-02-28T08:05:01+01:00 Process CVE-2017-12191 as NFU - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-15136 as NFU

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b7d3acb1 by Salvatore Bonaccorso at 2018-02-28T08:03:45+01:00 Mark CVE-2017-15136 as NFU - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add information for new ntp issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3d7c568f by Salvatore Bonaccorso at 2018-02-28T07:05:52+01:00 Add information for new ntp issues - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Mark unbound as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0ab6b0a8 by Salvatore Bonaccorso at 2018-02-28T06:52:22+01:00 Mark unbound as no-dsa - - - - - 8b1cd994 by Salvatore Bonaccorso at 2018-02-28T06:55:01+01:00 Remove unbound from dsa-needed list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2017-16820/collectd

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 01a85a5b by Salvatore Bonaccorso at 2018-02-28T06:35:45+01:00 Add fixing version for CVE-2017-16820/collectd - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-6574/golang as no-dsa for wheezy

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: 2149a056 by Abhijith PA at 2018-02-28T10:40:58+05:30 Mark CVE-2018-6574/golang as no-dsa for wheezy - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Correct CVE id for postgresql issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fd7f0402 by Salvatore Bonaccorso at 2018-02-27T22:17:49+01:00 Correct CVE id for postgresql issues Should be CVE-2018-1058 as referenced in the commits in the upstream git repository. - - - - -

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0b80c7c8 by security tracker role at 2018-02-27T21:10:19+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add freexl to dsa-needed list

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: cd26a9aa by Salvatore Bonaccorso at 2018-02-27T22:01:22+01:00 Add freexl to dsa-needed list - - - - - 1 changed file: - data/dsa-needed.txt Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: eference fix for CVE-2017-18203

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d326eb4c by Salvatore Bonaccorso at 2018-02-27T21:54:20+01:00 eference fix for CVE-2017-18203 - - - - - 7553ffe9 by Salvatore Bonaccorso at 2018-02-27T21:54:40+01:00 Add CVE-2017-18204/linux -

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18203/linux

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 64bb23e2 by Salvatore Bonaccorso at 2018-02-27T21:46:55+01:00 Add CVE-2017-18203/linux - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: libvpx/jessie triage

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 40394383 by Moritz Muehlenhoff at 2018-02-27T21:27:21+01:00 libvpx/jessie triage elinks no-dsa - - - - - 4bce8361 by Moritz Muehlenhoff at 2018-02-27T21:28:14+01:00 Merge branch master of

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reserve DSA number for xmltooling

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 337ffbe5 by Salvatore Bonaccorso at 2018-02-27T21:18:00+01:00 Reserve DSA number for xmltooling - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reserve DSA-4125-1 for wavpack (CVE-2018-6767, CVE-2018-7253, CVE-2018-7254)

Sebastien Delafond pushed to branch master at Debian Security Tracker / security-tracker Commits: 1cd0d1f4 by Sébastien Delafond at 2018-02-27T21:10:32+01:00 Reserve DSA-4125-1 for wavpack (CVE-2018-6767, CVE-2018-7253, CVE-2018-7254) - - - - - 2 changed files: - data/DSA/list -

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2018-0489: update reference to upstream issue

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 258d90f6 by Salvatore Bonaccorso at 2018-02-27T21:04:46+01:00 CVE-2018-0489: update reference to upstream issue - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Record fix for CVE-2018-0486 which will be included in DSA

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3ee8f0c2 by Salvatore Bonaccorso at 2018-02-27T21:02:21+01:00 Record fix for CVE-2018-0486 which will be included in DSA - - - - - 2 changed files: - data/CVE/list -

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] SSPSA 201802-01: Update temporary description to be more descriptive

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 719152b4 by Salvatore Bonaccorso at 2018-02-27T20:57:52+01:00 SSPSA 201802-01: Update temporary description to be more descriptive Thijs Kinkhorst will take care of requesting a CVE for the

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Take care of xmltooling DSA

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 26868cb1 by Salvatore Bonaccorso at 2018-02-27T20:47:25+01:00 Take care of xmltooling DSA - - - - - 1 changed file: - data/dsa-needed.txt Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2018-754{0, 1, 2}/xen assigned

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1dfbecf4 by Salvatore Bonaccorso at 2018-02-27T20:43:37+01:00 CVE-2018-754{0,1,2}/xen assigned - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Update status on CVE-2017-18201/libcdio

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 2beeb03c by Salvatore Bonaccorso at 2018-02-27T20:40:07+01:00 Update status on CVE-2017-18201/libcdio The isuse was introduced in version 0.92 as there was a major change in 0.90 as to how

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lucene-solr DSA

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: f9372731 by Moritz Muehlenhoff at 2018-02-27T20:33:52+01:00 lucene-solr DSA - - - - - 3 changed files: - data/CVE/list - data/DSA/list - data/dsa-needed.txt Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: mingw no-dsa

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 1eb49728 by Moritz Muehlenhoff at 2018-02-27T20:29:34+01:00 mingw no-dsa - - - - - 43795e6b by Moritz Muehlenhoff at 2018-02-27T20:31:49+01:00 Merge branch master of

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 3 commits: add note about simplesamlphp

og + NOTE: 20180226: consider reviewing the backlog of issues fixed in jessie to see if it is worth fixing a few DOS in the backlog (anarcat) +-- +postgresql-9.1 + NOTE: 20180227: confirm jessie's diagnostic (N/A) and see if it applies to wheezy. maintainer not contacted yet. -- ruby1.9.1 (Emil

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add dokuwiki and xen to dsa-needed

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: e37bf341 by Moritz Muehlenhoff at 2018-02-27T19:18:28+01:00 add dokuwiki and xen to dsa-needed - - - - - 1 changed file: - data/dsa-needed.txt Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] tiff postponed

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 5e81c72a by Moritz Muehlenhoff at 2018-02-27T18:53:29+01:00 tiff postponed xpdf unimportant - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] php unimportant

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 7418ff2a by Moritz Muehlenhoff at 2018-02-27T18:49:14+01:00 php unimportant - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add new xen issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ee69b09c by Salvatore Bonaccorso at 2018-02-27T17:35:03+01:00 Add new xen issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1c675925 by Salvatore Bonaccorso at 2018-02-27T17:19:32+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-16229/ruby-ox

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 11db8fd2 by Salvatore Bonaccorso at 2018-02-27T17:15:26+01:00 Update information for CVE-2017-16229/ruby-ox - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-7490

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 34d5d2b0 by Salvatore Bonaccorso at 2018-02-27T17:06:03+01:00 Add bug reference for CVE-2018-7490 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2017-18201/libcdio

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5036f70b by Salvatore Bonaccorso at 2018-02-27T16:52:39+01:00 Add bug reference for CVE-2017-18201/libcdio - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-1000071/roundcube as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 91faab01 by Salvatore Bonaccorso at 2018-02-27T16:51:20+01:00 Mark CVE-2018-171/roundcube as no-dsa - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Remove stretch and jessie tagged versions

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 174b0e06 by Salvatore Bonaccorso at 2018-02-27T16:43:50+01:00 Remove stretch and jessie tagged versions They will be included in the DSA list once we release a DSA. - - - - - 1 changed file:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2018-1057: postgresql-10, postgresql-9.6, postgresql-9.4, postgresql-9.1

Christoph Berg pushed to branch master at Debian Security Tracker / security-tracker Commits: 407bd6a3 by Christoph Berg at 2018-02-27T16:21:01+01:00 CVE-2018-1057: postgresql-10, postgresql-9.6, postgresql-9.4, postgresql-9.1 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2018-7321 as not-affected for wheezy and jessie

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 95d858c0 by Thorsten Alteholz at 2018-02-27T16:07:25+01:00 mark CVE-2018-7321 as not-affected for wheezy and jessie - - - - - 7460315b by Thorsten Alteholz at 2018-02-27T16:07:45+01:00 Merge branch

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add xmltooling to dsa-needed list

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f3cbbde1 by Salvatore Bonaccorso at 2018-02-27T15:16:41+01:00 Add xmltooling to dsa-needed list - - - - - 1 changed file: - data/dsa-needed.txt Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-0489/xmltooling

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 65cc0228 by Salvatore Bonaccorso at 2018-02-27T15:16:07+01:00 Add CVE-2018-0489/xmltooling - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add a new simplesamlphp issue

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6407419a by Salvatore Bonaccorso at 2018-02-27T15:13:36+01:00 Add a new simplesamlphp issue - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Addition of CVE-2016-10712 was moved to respective DLA list

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a6125468 by Salvatore Bonaccorso at 2018-02-27T15:04:22+01:00 Addition of CVE-2016-10712 was moved to respective DLA list - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] add another CVE for php bug 71323 to DLA

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: a376ae9a by Thorsten Alteholz at 2018-02-27T14:57:40+01:00 add another CVE for php bug 71323 to DLA - - - - - 1 changed file: - data/DLA/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2015-9253/php add upstream bugtracker NOTE

Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker Commits: b4b37c4f by Santiago R.R at 2018-02-27T11:34:58+01:00 CVE-2015-9253/php add upstream bugtracker NOTE Signed-off-by: Santiago R.R santiag...@riseup.net - - - - - 1 changed file: - data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add associated source for CVE-2017-16229

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1b48833c by Salvatore Bonaccorso at 2018-02-27T10:29:11+01:00 Add associated source for CVE-2017-16229 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-7490/uwsgi

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 244914b0 by Salvatore Bonaccorso at 2018-02-27T10:23:36+01:00 Add CVE-2018-7490/uwsgi - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18202/linux

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 38c2595e by Salvatore Bonaccorso at 2018-02-27T10:16:25+01:00 Add CVE-2017-18202/linux - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8e479132 by security tracker role at 2018-02-27T09:10:14+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add and take wavpack in dsa-needed

Sebastien Delafond pushed to branch master at Debian Security Tracker / security-tracker Commits: 779d1c1e by Sébastien Delafond at 2018-02-27T09:34:19+01:00 Add and take wavpack in dsa-needed - - - - - 1 changed file: - data/dsa-needed.txt Changes: =