Author: mattia
Date: 2017-08-09 18:41:09 + (Wed, 09 Aug 2017)
New Revision: 54487
Modified:
data/CVE/list
Log:
xchat CVEs
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 17:35:07 UTC (rev 54486)
+++
Author: carnil
Date: 2017-08-09 18:46:14 + (Wed, 09 Aug 2017)
New Revision: 54488
Modified:
data/CVE/list
Log:
Sort some entries
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 18:41:09 UTC (rev 54487)
+++
Author: jmm
Date: 2017-08-10 03:49:44 + (Thu, 10 Aug 2017)
New Revision: 54511
Modified:
data/CVE/list
Log:
clamav no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-10 03:45:37 UTC (rev 54510)
+++
Author: roberto
Date: 2017-08-10 03:51:44 + (Thu, 10 Aug 2017)
New Revision: 54512
Modified:
data/CVE/list
Log:
Add references for upstream commits that fix CVE-2017-11352
Modified: data/CVE/list
===
--- data/CVE/list
Author: carnil
Date: 2017-08-10 03:45:37 + (Thu, 10 Aug 2017)
New Revision: 54510
Modified:
data/CVE/list
Log:
Correct tracking for CVE-2017-11590
Correct the initial triaging (done by me, so blame on me). Although the
original report triggers the issue in the caseless_hash function,
Author: roberto
Date: 2017-08-10 04:57:14 + (Thu, 10 Aug 2017)
New Revision: 54513
Modified:
data/CVE/list
Log:
Note that CVE-2017-11536 does not affect imagemagick in wheezy
Modified: data/CVE/list
===
--- data/CVE/list
Author: carnil
Date: 2017-08-10 05:55:30 + (Thu, 10 Aug 2017)
New Revision: 54514
Modified:
data/CVE/list
Log:
Add CVE-2017-10661/linux
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-10 04:57:14 UTC (rev 54513)
Author: carnil
Date: 2017-08-09 06:27:47 + (Wed, 09 Aug 2017)
New Revision: 54460
Modified:
data/CVE/list
Log:
Add CVE-2017-7809/firefox*
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 06:25:28 UTC (rev 54459)
Author: carnil
Date: 2017-08-09 06:55:58 + (Wed, 09 Aug 2017)
New Revision: 54464
Modified:
data/CVE/list
Log:
Add CVE-2017-199
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 06:51:05 UTC (rev 54463)
+++
Author: carnil
Date: 2017-08-09 07:07:54 + (Wed, 09 Aug 2017)
New Revision: 54465
Modified:
data/CVE/list
Log:
Add bug reference for curl issue, #871554
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 06:55:58
Author: carnil
Date: 2017-08-09 06:25:28 + (Wed, 09 Aug 2017)
New Revision: 54459
Modified:
data/CVE/list
Log:
Add new wildmidi issues
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-08 21:15:03 UTC (rev 54458)
Author: carnil
Date: 2017-08-09 07:10:05 + (Wed, 09 Aug 2017)
New Revision: 54466
Modified:
data/CVE/list
Log:
Add bug for CVE-2017-1000100/curl issue, #871555
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09
Author: carnil
Date: 2017-08-09 06:29:52 + (Wed, 09 Aug 2017)
New Revision: 54461
Modified:
data/CVE/list
Log:
Add CVE-2017-7543
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 06:27:47 UTC (rev 54460)
+++
Author: carnil
Date: 2017-08-09 06:49:37 + (Wed, 09 Aug 2017)
New Revision: 54462
Modified:
data/CVE/list
Log:
Add CVE-2017-1000101
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 06:29:52 UTC (rev 54461)
+++
Author: carnil
Date: 2017-08-09 06:51:05 + (Wed, 09 Aug 2017)
New Revision: 54463
Modified:
data/CVE/list
Log:
Add CVE-2017-1000100
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 06:49:37 UTC (rev 54462)
+++
Author: carnil
Date: 2017-08-09 08:17:33 + (Wed, 09 Aug 2017)
New Revision: 54467
Modified:
data/CVE/list
Log:
Add fixed version for firefox-esr upload to unstable
Modified: data/CVE/list
===
--- data/CVE/list
Author: pochu
Date: 2017-08-09 08:35:12 + (Wed, 09 Aug 2017)
New Revision: 54468
Modified:
data/dla-needed.txt
Log:
dla: claim firefox-esr
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-09 08:17:33 UTC (rev
Author: sectracker
Date: 2017-08-09 09:10:20 + (Wed, 09 Aug 2017)
New Revision: 54469
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 08:35:12 UTC (rev 54468)
+++
Author: carnil
Date: 2017-08-09 09:19:27 + (Wed, 09 Aug 2017)
New Revision: 54470
Modified:
data/CVE/list
Log:
Process various CVEs specific to Microsoft products
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09
Author: carnil
Date: 2017-08-09 11:10:19 + (Wed, 09 Aug 2017)
New Revision: 54471
Modified:
data/CVE/list
Log:
Update silverjuke entry
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 09:19:27 UTC (rev 54470)
Author: fgeek-guest
Date: 2017-08-09 11:16:39 + (Wed, 09 Aug 2017)
New Revision: 54472
Modified:
data/CVE/list
Log:
giflib gif2rgb DumpScreen2RGB
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 11:10:19 UTC
Author: seb
Date: 2017-08-09 11:58:18 + (Wed, 09 Aug 2017)
New Revision: 54473
Modified:
conf/cvelist.el
Log:
In emacs debian-cvelist-mode, handle up to 7 digits in CVE IDs
Modified: conf/cvelist.el
===
--- conf/cvelist.el
Author: lamby
Date: 2017-08-09 12:01:36 + (Wed, 09 Aug 2017)
New Revision: 54474
Modified:
data/dla-needed.txt
Log:
Triage cacti for LTS
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-09 11:58:18 UTC (rev
Author: lamby
Date: 2017-08-09 12:06:35 + (Wed, 09 Aug 2017)
New Revision: 54478
Modified:
data/dla-needed.txt
Log:
Triage giflib for LTS
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-09 12:06:33 UTC (rev
Author: lamby
Date: 2017-08-09 12:06:29 + (Wed, 09 Aug 2017)
New Revision: 54475
Modified:
data/dla-needed.txt
Log:
Triage curl for LTS
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-09 12:01:36 UTC (rev
Author: lamby
Date: 2017-08-09 12:06:33 + (Wed, 09 Aug 2017)
New Revision: 54477
Modified:
data/dla-needed.txt
Log:
Add comment for curl
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-09 12:06:31 UTC (rev
Author: lamby
Date: 2017-08-09 12:06:31 + (Wed, 09 Aug 2017)
New Revision: 54476
Modified:
data/dla-needed.txt
Log:
Add attribution for previous comment.
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-09
Author: lamby
Date: 2017-08-09 12:09:57 + (Wed, 09 Aug 2017)
New Revision: 54479
Modified:
data/CVE/list
Log:
CVE-2017-11664 (etc.) for wheezy (vulnerable code not present)
Modified: data/CVE/list
===
--- data/CVE/list
Author: carnil
Date: 2017-08-09 19:37:56 + (Wed, 09 Aug 2017)
New Revision: 54489
Modified:
data/CVE/list
Log:
Mark CVE-2017-9799 as NFU
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 18:46:14 UTC (rev 54488)
Author: carnil
Date: 2017-08-09 17:35:07 + (Wed, 09 Aug 2017)
New Revision: 54486
Modified:
data/CVE/list
Log:
Add fixing version for CVE-2017-11468/docker-registry
Modified: data/CVE/list
===
--- data/CVE/list
Author: jmm
Date: 2017-08-09 21:11:11 + (Wed, 09 Aug 2017)
New Revision: 54491
Modified:
data/CVE/list
Log:
xchat no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 21:10:19 UTC (rev 54490)
+++
Author: jmm
Date: 2017-08-09 21:19:00 + (Wed, 09 Aug 2017)
New Revision: 54492
Modified:
data/CVE/list
Log:
puppet n/a
NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 21:11:11 UTC (rev 54491)
+++
it a try tomorrow (2017-05-28)
NOTE: 20170708: This issue cannot be backported to postgresql-9.1 because
NOTE: 20170708: 9.1 does nothave the leak-proof function feature that the
NOTE: 20170708: fix depends on. (lamby)
+ NOTE: 20170809: CVE-2017-7484 is not affected (mbanck)
--
qemu (Guido
Author: sectracker
Date: 2017-08-09 21:10:19 + (Wed, 09 Aug 2017)
New Revision: 54490
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 19:37:56 UTC (rev 54489)
+++
Author: jmm
Date: 2017-08-09 22:21:21 + (Wed, 09 Aug 2017)
New Revision: 54494
Modified:
data/CVE/list
Log:
neutron n/a
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 21:27:07 UTC (rev 54493)
+++
Author: jmm
Date: 2017-08-10 00:48:03 + (Thu, 10 Aug 2017)
New Revision: 54502
Modified:
data/CVE/list
Log:
quagga bug
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 23:14:15 UTC (rev 54501)
+++ data/CVE/list
Author: jmm
Date: 2017-08-09 22:52:04 + (Wed, 09 Aug 2017)
New Revision: 54495
Modified:
data/CVE/list
Log:
wildmidi no-dsa/not-affected
mame doesn't embed libnodefart in mame (checked jessie and stretch)
jetty no-dsa
mcollective no-dsa
Modified: data/CVE/list
Author: jmm
Date: 2017-08-09 22:55:41 + (Wed, 09 Aug 2017)
New Revision: 54497
Modified:
data/CVE/list
Log:
yara no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 22:54:45 UTC (rev 54496)
+++
Author: jmm
Date: 2017-08-09 22:59:52 + (Wed, 09 Aug 2017)
New Revision: 54498
Modified:
data/CVE/list
Log:
minidjvu unimportant
- just a crash in a CLI tool (and and unused library)
Modified: data/CVE/list
===
---
Author: jmm
Date: 2017-08-09 23:02:04 + (Wed, 09 Aug 2017)
New Revision: 54499
Modified:
data/dsa-needed.txt
Log:
add ioquake to dsa-needed
Modified: data/dsa-needed.txt
===
--- data/dsa-needed.txt 2017-08-09 22:59:52 UTC
Author: jmm
Date: 2017-08-09 23:14:15 + (Wed, 09 Aug 2017)
New Revision: 54501
Modified:
data/CVE/list
Log:
wildmidi bug
quagga no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 23:08:09 UTC (rev 54500)
Author: jmm
Date: 2017-08-09 22:54:45 + (Wed, 09 Aug 2017)
New Revision: 54496
Modified:
data/dsa-needed.txt
Log:
add tcpdump to dsa-needed
Modified: data/dsa-needed.txt
===
--- data/dsa-needed.txt 2017-08-09 22:52:04 UTC
Author: jmm
Date: 2017-08-09 23:08:09 + (Wed, 09 Aug 2017)
New Revision: 54500
Modified:
data/CVE/list
Log:
libvorbis no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 23:02:04 UTC (rev 54499)
+++
Author: jmm
Date: 2017-08-10 02:53:14 + (Thu, 10 Aug 2017)
New Revision: 54503
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
firefox-esr DSA
Modified: data/DSA/list
===
--- data/DSA/list 2017-08-10 00:48:03 UTC
Author: jmm
Date: 2017-08-10 02:59:38 + (Thu, 10 Aug 2017)
New Revision: 54504
Modified:
data/CVE/list
Log:
podofo no-dsa
libsndfile no-dsa
libmad no-dsa
jasper n/a and unimportant
ruby-rack-cors n/a in jessie
Modified: data/CVE/list
Author: carnil
Date: 2017-08-10 03:14:40 + (Thu, 10 Aug 2017)
New Revision: 54505
Modified:
data/CVE/list
Log:
CVE-2015-7764/lemur
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-10 02:59:38 UTC (rev 54504)
+++
Author: carnil
Date: 2017-08-10 03:14:50 + (Thu, 10 Aug 2017)
New Revision: 54506
Modified:
data/CVE/list
Log:
Process NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-10 03:14:40 UTC (rev 54505)
+++
Author: carnil
Date: 2017-08-10 03:18:10 + (Thu, 10 Aug 2017)
New Revision: 54507
Modified:
data/CVE/list
Log:
Process NFUs
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-10 03:14:50 UTC (rev 54506)
+++
Author: carnil
Date: 2017-08-10 03:22:12 + (Thu, 10 Aug 2017)
New Revision: 54508
Modified:
data/CVE/list
Log:
Process 2012 ffmpeg CVEs
All fixed with the reintroduction to Debian, included with the unstable
upload as 7:2.4.1-1
Modified: data/CVE/list
Author: roberto
Date: 2017-08-10 03:38:53 + (Thu, 10 Aug 2017)
New Revision: 54509
Modified:
data/dla-needed.txt
Log:
Release lock on tiff/tiff3
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2017-08-10 03:22:12
Author: fgeek-guest
Date: 2017-08-09 12:55:49 + (Wed, 09 Aug 2017)
New Revision: 54480
Modified:
data/CVE/list
Log:
Duplicate of CVE-2016-3977
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 12:09:57 UTC (rev
Author: carnil
Date: 2017-08-09 13:52:06 + (Wed, 09 Aug 2017)
New Revision: 54485
Modified:
data/CVE/list
Log:
Remove two todo items
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 13:43:48 UTC (rev 54484)
+++
Author: jmm
Date: 2017-08-09 13:40:08 + (Wed, 09 Aug 2017)
New Revision: 54483
Modified:
data/CVE/list
Log:
esr also fixed
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 13:39:12 UTC (rev 54482)
+++
Author: jmm
Date: 2017-08-09 13:39:12 + (Wed, 09 Aug 2017)
New Revision: 54482
Modified:
data/CVE/list
Log:
firefox fixed
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 13:35:48 UTC (rev 54481)
+++
Author: jmm
Date: 2017-08-09 13:35:48 + (Wed, 09 Aug 2017)
New Revision: 54481
Modified:
data/CVE/list
Log:
NFUs
miniupnpc no-dsa
Modified: data/CVE/list
===
--- data/CVE/list 2017-08-09 12:55:49 UTC (rev 54480)
+++
Author: carnil
Date: 2017-08-09 13:43:48 + (Wed, 09 Aug 2017)
New Revision: 54484
Modified:
data/CVE/list
Log:
Process various NFUs
Rebased/merged with jmm's commit
Modified: data/CVE/list
===
--- data/CVE/list
56 matches
Mail list logo