[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2018-8050/afflib, #892599 fixed in unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ec693463 by Salvatore Bonaccorso at 2018-03-15T06:25:32+01:00 CVE-2018-8050/afflib, #892599 fixed in unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2018-1000115/memcached

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b8285392 by Salvatore Bonaccorso at 2018-03-15T06:20:39+01:00 Add fixing version for CVE-2018-1000115/memcached - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] new xpdf issues potentially affecting poppler

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: af9b5d8f by Moritz Muehlenhoff at 2018-03-14T23:29:31+01:00 new xpdf issues potentially affecting poppler NFUs - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] jakarta-jmeter no-dsa

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b79e5971 by Moritz Muehlenhoff at 2018-03-14T22:59:03+01:00 jakarta-jmeter no-dsa libgcrypt, afflib unimportant - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Claim curl in dla-needed.txt

Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker Commits: 90f82ebc by Santiago Ruano Rincón at 2018-03-14T22:50:26+01:00 Claim curl in dla-needed.txt Signed-off-by: Santiago Ruano Rincón santiag...@riseup.net - - - - - 1 changed file: -

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] libvirt DSA

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 798ebd97 by Moritz Muehlenhoff at 2018-03-14T22:42:05+01:00 libvirt DSA - - - - - 2 changed files: - data/CVE/list - data/DSA/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000132 bug reference for mercurial issue

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: be2e3913 by Salvatore Bonaccorso at 2018-03-14T22:37:45+01:00 Add CVE-2018-1000132 bug reference for mercurial issue - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1f8cec57 by Salvatore Bonaccorso at 2018-03-14T22:36:41+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add notes for CVE-2018-1000132/mercurial

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4666c9d8 by Salvatore Bonaccorso at 2018-03-14T22:24:15+01:00 Add notes for CVE-2018-1000132/mercurial - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 3 commits: Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9f322a8b by Salvatore Bonaccorso at 2018-03-14T22:18:26+01:00 Process NFUs - - - - - 5ef4d6ae by Salvatore Bonaccorso at 2018-03-14T22:18:27+01:00 Add new webmin issue - - - - - 96d98e94 by

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] curl DSA

Alessandro Ghedini pushed to branch master at Debian Security Tracker / security-tracker Commits: 9451e95f by Alessandro Ghedini at 2018-03-14T21:14:40+00:00 curl DSA - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Cleanup CVE-2018-1000128 entry

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 237ef3af by Salvatore Bonaccorso at 2018-03-14T22:12:17+01:00 Cleanup CVE-2018-1000128 entry - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f576550d by security tracker role at 2018-03-14T21:10:19+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-8099

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 66bfd643 by Salvatore Bonaccorso at 2018-03-14T22:07:45+01:00 Add bug reference for CVE-2018-8099 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2018-8098

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 72921953 by Salvatore Bonaccorso at 2018-03-14T22:06:30+01:00 Add bug reference for CVE-2018-8098 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8098/libgit2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3f67e0b3 by Salvatore Bonaccorso at 2018-03-14T21:58:00+01:00 Add CVE-2018-8098/libgit2 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-8099/libgit2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 73344d0d by Salvatore Bonaccorso at 2018-03-14T21:57:11+01:00 Add CVE-2018-8099/libgit2 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add further note expansion for CVE-2017-5715

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8cb20051 by Salvatore Bonaccorso at 2018-03-14T21:03:55+01:00 Add further note expansion for CVE-2017-5715 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-18222 as unfixed and follow kernel-sec

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 18c2831e by Salvatore Bonaccorso at 2018-03-14T20:55:38+01:00 Mark CVE-2017-18222 as unfixed and follow kernel-sec It might be possible to get a incomplete fix CVE, but the original commit is

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Remove no-dsa tag from CVE-2018-6764, included in upcoming DSA

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 7910736e by Salvatore Bonaccorso at 2018-03-14T16:13:38+01:00 Remove no-dsa tag from CVE-2018-6764, included in upcoming DSA - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Remove no-dsa tag for CVE-2018-5748

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0d0b0d19 by Salvatore Bonaccorso at 2018-03-14T16:09:21+01:00 Remove no-dsa tag for CVE-2018-5748 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1064/libvirt

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0673fa0c by Salvatore Bonaccorso at 2018-03-14T16:08:36+01:00 Add CVE-2018-1064/libvirt - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] mark CVEs for paramiko as no-dsa

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: daba3286 by Thorsten Alteholz at 2018-03-14T16:08:10+01:00 mark CVEs for paramiko as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] mark CVEs for libpodofo as no-das

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: d66d0416 by Thorsten Alteholz at 2018-03-14T16:06:59+01:00 mark CVEs for libpodofo as no-das - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] mark CVEs for cimg as no-dsa

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 772211e3 by Thorsten Alteholz at 2018-03-14T16:04:46+01:00 mark CVEs for cimg as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: add curl to dla-needed.txt

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 2ab6a30b by Thorsten Alteholz at 2018-03-14T16:01:33+01:00 add curl to dla-needed.txt - - - - - f1f6ce9c by Thorsten Alteholz at 2018-03-14T16:01:55+01:00 add curl to dla-needed.txt - - - - - 1

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Record fixed version for mupdf in unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 844030ca by Salvatore Bonaccorso at 2018-03-14T15:13:29+01:00 Record fixed version for mupdf in unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] exempi fixed

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 349c809f by Moritz Muehlenhoff at 2018-03-14T15:12:19+01:00 exempi fixed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000127/memcached

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4f5738ac by Salvatore Bonaccorso at 2018-03-14T12:27:23+01:00 Add CVE-2018-1000127/memcached - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process CVE-2018-1000126/ajenti, itp'ed, #792019

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c3579dd5 by Salvatore Bonaccorso at 2018-03-14T12:23:51+01:00 Process CVE-2018-1000126/ajenti, itped, #792019 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 632941b4 by Salvatore Bonaccorso at 2018-03-14T12:22:50+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18229/graphicsmagick

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: dc66dd12 by Salvatore Bonaccorso at 2018-03-14T12:15:29+01:00 Add CVE-2017-18229/graphicsmagick - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18230/graphicsmagick

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 560b06c7 by Salvatore Bonaccorso at 2018-03-14T12:13:51+01:00 Add CVE-2017-18230/graphicsmagick - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process CVE-2017-18231/graphicsmagick

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 019204c1 by Salvatore Bonaccorso at 2018-03-14T12:12:17+01:00 Process CVE-2017-18231/graphicsmagick - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000128, duplicate of CVE-2018-7752

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d2ab35fb by Salvatore Bonaccorso at 2018-03-14T11:20:20+01:00 Add CVE-2018-1000128, duplicate of CVE-2018-7752 Pending request to MITRE to confirm which one should be rejected since not clear if

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] packages/clamav: include info about how to handle clamav updates

Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker Commits: fa322cd4 by Santiago R.R at 2018-03-14T10:18:16+01:00 packages/clamav: include info about how to handle clamav updates Signed-off-by: Santiago R.R santiag...@riseup.net - - - - - 1 changed file: -

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d2e210c0 by security tracker role at 2018-03-14T09:10:17+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] firefox-esr fixed

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 567dbc09 by Moritz Muehlenhoff at 2018-03-14T08:57:46+01:00 firefox-esr fixed - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] dla: take firefox-esr

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 837be314 by Emilio Pozuelo Monfort at 2018-03-14T08:53:57+01:00 dla: take firefox-esr - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add curl to dsa-needed list

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8eebdbdf by Salvatore Bonaccorso at 2018-03-14T08:14:24+01:00 Add curl to dsa-needed list - - - - - 1 changed file: - data/dsa-needed.txt Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000120/curl

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 66836197 by Salvatore Bonaccorso at 2018-03-14T08:07:04+01:00 Add CVE-2018-1000120/curl - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000121/curl

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e0ac6add by Salvatore Bonaccorso at 2018-03-14T08:05:57+01:00 Add CVE-2018-1000121/curl - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000122/curl

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c71e8ba9 by Salvatore Bonaccorso at 2018-03-14T08:04:50+01:00 Add CVE-2018-1000122/curl - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] firefox issues fixed in unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 573fb94a by Salvatore Bonaccorso at 2018-03-14T07:49:49+01:00 firefox issues fixed in unstable - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add link to upstream fix for CVE-2017-11613

Brian May pushed to branch master at Debian Security Tracker / security-tracker Commits: 92764e47 by Brian May at 2018-03-14T17:03:55+11:00 Add link to upstream fix for CVE-2017-11613 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list