[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] .gitignore data/usertags

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: c4971a55 by Guido Günther at 2017-12-29T23:05:18+01:00 .gitignore data/usertags generated by bin/compare-embed-usertags - - - - - 1 changed file: - .gitignore Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: update vorbis status

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 896562c7 by Guido Günther at 2017-12-29T21:10:00+01:00 lts: update vorbis status - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] .gitignore allitems.html.gz as well

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 234317c8 by Guido Günther at 2017-12-29T21:48:28+01:00 .gitignore allitems.html.gz as well - - - - - 1 changed file: - .gitignore Changes: = .gitignore

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Remove .gitignore from .gitignore

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: d8541fd7 by Guido Günther at 2017-12-29T23:53:56+01:00 Remove .gitignore from .gitignore - - - - - 1 changed file: - .gitignore Changes: = .gitignore

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: add rsync to dla-needed

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: fd49ba9b by Guido Günther at 2018-01-18T20:28:46+01:00 lts: add rsync to dla-needed - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: mark virtualbox-guest-additions-iso as no-dsa

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 08f4e273 by Guido Günther at 2018-01-18T20:35:34+01:00 lts: mark virtualbox-guest-additions-iso as no-dsa non-free is not supported - - - - - 1 changed file: - data/CVE/list Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: mark CVE-2017-18030 as fixed in qemu{, -kvm}

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 7286bf5e by Guido Günther at 2018-01-16T11:29:23+01:00 lts: mark CVE-2017-18030 as fixed in qemu{,-kvm} The patch was part of our cirrus update. - - - - - 1 changed file: - data/CVE/list Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 4 commits: lts: CVE-2018-5683 can be fixed in a future update

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 8ad480d1 by Guido Günther at 2018-01-16T12:01:50+01:00 lts: CVE-2018-5683 can be fixed in a future update - - - - - a9831228 by Guido Günther at 2018-01-16T12:01:55+01:00 lts: xen on arm

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: Add isc-dhcp to dla-needed

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: d5cda7f6 by Guido Günther at 2018-01-16T12:29:28+01:00 lts: Add isc-dhcp to dla-needed This would be a perfect candidate for a point release - - - - - 1 changed file: - data/dla-needed.txt

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: mark lrzip issues as no-dsa

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 414b941c by Guido Günther at 2018-01-20T16:32:54+01:00 lts: mark lrzip issues as no-dsa There are plenty of other DoS already. - - - - - 1 changed file: - data/CVE/list Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark mysql-connector-net as no-dsa

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: da823ade by Guido Günther at 2018-01-19T17:42:29+01:00 Mark mysql-connector-net as no-dsa as discussed with carnil - - - - - 1 changed file: - data/CVE/list Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: triage qemu CVE-2017-18043

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 883d779e by Guido Günther at 2018-01-19T17:07:12+01:00 lts: triage qemu CVE-2017-18043 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: follow the security teams decision on openocd

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 1b4e62b7 by Guido Günther at 2018-01-19T17:08:31+01:00 lts: follow the security teams decision on openocd - - - - - 2 changed files: - data/CVE/list - data/dla-needed.txt Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add link to fix for CVE-2018-5748

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 718ab5df by Guido Günther at 2018-01-19T09:38:27+01:00 Add link to fix for CVE-2018-5748 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: add an claim thunderbird

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 0dfe3a67 by Guido Günther at 2018-01-26T08:47:39+01:00 lts: add an claim thunderbird - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] triage thunderbird

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 9a40b7d9 by Guido Günther at 2018-01-26T09:11:14+01:00 triage thunderbird - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: mark openocd issue as no-dsa

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 7bcddedd by Guido Günther at 2018-01-17T11:04:35+01:00 lts: mark openocd issue as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: add bind9 to dla-needed

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 48d97cd3 by Guido Günther at 2018-01-17T09:17:41+01:00 lts: add bind9 to dla-needed - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: lts: add php5 to dla-needed

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 272834df by Guido Günther at 2018-01-17T09:44:56+01:00 lts: add php5 to dla-needed - - - - - b202d115 by Guido Günther at 2018-01-17T09:44:56+01:00 lts: triage systemd Since its not the default init

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: add irssie to dla-needed

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 69a24f26 by Guido Günther at 2018-01-16T14:13:23+01:00 lts: add irssie to dla-needed Affected by CVE-2018-5205, CVE-2018-5206, CVE-2018-5207, CVE-2018-5208 - - - - - 1 changed file: - data/dla

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reserve DLA-1262-1 for thunderbird

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 38ba3e68 by Guido Günther at 2018-01-29T13:16:29+01:00 Reserve DLA-1262-1 for thunderbird - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: update swftools status

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 070a04e8 by Guido Günther at 2018-01-28T12:36:55+01:00 lts: update swftools status - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: fix typo

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: cf37bc29 by Guido Günther at 2018-01-31T11:51:49+01:00 lts: fix typo - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reserve DLA-1263-1 for debian-security-support

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: d6384a62 by Guido Günther at 2018-01-29T17:51:27+01:00 Reserve DLA-1263-1 for debian-security-support - - - - - 1 changed file: - data/dla-needed.txt Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Unbreak syntax check

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: aa37aed1 by Guido Günther at 2018-02-23T11:01:10+01:00 Unbreak syntax check by removing the UTF-8 character - - - - - 1 changed file: - data/CVE/list Changes

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: lts: triage libgd2

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 3df99424 by Guido Günther at 2018-01-17T10:00:22+01:00 lts: triage libgd2 - - - - - 42db45a8 by Guido Günther at 2018-01-17T10:00:22+01:00 Add bug ref for CVE-2018-5711 - - - - - 2 changed files

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: xen not affected by CVE-2018-7542

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 66ae313e by Guido Günther at 2018-02-28T20:39:46+01:00 lts: xen not affected by CVE-2018-7542 - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] libvirt: mark CVE-2018-6764 as not affecting jessie and wheezy

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: 4982996e by Guido Günther at 2018-03-12T21:06:10+01:00 libvirt: mark CVE-2018-6764 as not affecting jessie and wheezy The bug was introduced in 1.3.1 - - - - - 1 changed file: - data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] lts: unassign vorbis

Guido Günther pushed to branch master at Debian Security Tracker / security-tracker Commits: b2042491 by Guido Günther at 2018-03-17T19:37:48+01:00 lts: unassign vorbis Theres still a fix for one CVE missing but it might make sense to roll out a dla anyway - - - - - 1 changed file: - data