Author: alteholz
Date: 2015-10-22 19:07:23 + (Thu, 22 Oct 2015)
New Revision: 37251
Modified:
data/dla-needed.txt
Log:
virtualbox-ose might be affected
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2015-10-22
Author: alteholz
Date: 2015-10-22 18:57:50 + (Thu, 22 Oct 2015)
New Revision: 37250
Modified:
data/dla-needed.txt
Log:
several CVEs for NTP, more information are only available after login
Modified: data/dla-needed.txt
===
Author: alteholz
Date: 2015-10-22 14:08:38 + (Thu, 22 Oct 2015)
New Revision: 37242
Modified:
data/CVE/list
Log:
additional note for polarssl
Modified: data/CVE/list
===
--- data/CVE/list 2015-10-22 14:05:40 UTC (rev
Author: alteholz
Date: 2015-10-25 16:33:39 + (Sun, 25 Oct 2015)
New Revision: 37325
Modified:
data/DLA/list
Log:
Reserve DLA-334-1 for libxml2
Modified: data/DLA/list
===
--- data/DLA/list 2015-10-25 15:48:17 UTC (rev
-2.6
+--
lxc (Mike Gabriel)
--
ntp (Ben Hutchings)
--
openafs (Santiago R.R.)
--
+openjdk-6
+--
php5 (Thorsten Alteholz)
NOTE: next upload in October
--
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http
Author: alteholz
Date: 2015-10-26 18:21:24 + (Mon, 26 Oct 2015)
New Revision: 37346
Modified:
data/DLA/list
Log:
Reserve DLA-334-2 for libxml2
Modified: data/DLA/list
===
--- data/DLA/list 2015-10-26 18:07:52 UTC (rev
16:25:55 UTC (rev 37616)
+++ data/dla-needed.txt 2015-11-08 18:31:41 UTC (rev 37617)
@@ -40,9 +40,6 @@
--
openjdk-6
--
-php5 (Thorsten Alteholz)
- NOTE: next upload in October
---
pound
NOTE: updating to the wheezy option might be less error prone
Author: alteholz
Date: 2015-11-08 18:52:37 + (Sun, 08 Nov 2015)
New Revision: 37618
Modified:
data/dla-needed.txt
Log:
next round fpr php5
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2015-11-08 18:31:41 UTC (rev
37717)
+++ data/dla-needed.txt 2015-11-15 18:26:35 UTC (rev 37718)
@@ -28,7 +28,7 @@
NOTE: a fix is probably not trivial, as thread safety has to be backported
to 0.9.7
NOTE: possibly ending up in ABI breakage, second opinion welcome!
--
-libxml2
+libxml2 (Thorsten Alteholz)
--
linux-2.6
)
+++ data/dla-needed.txt 2015-11-17 14:29:52 UTC (rev 37732)
@@ -22,6 +22,8 @@
--
libphp-snoopy
--
+libpng (Thorsten Alteholz)
+--
libsndfile (Thorsten Alteholz)
--
libvncserver (Mike Gabriel)
___
Secure-testing-commits mailing list
Secure-testing
37575)
+++ data/dla-needed.txt 2015-11-05 16:19:30 UTC (rev 37576)
@@ -22,7 +22,7 @@
--
libphp-snoopy
--
-libsndfile
+libsndfile (Thorsten Alteholz)
--
libvncserver (Mike Gabriel)
NOTE: a fix is probably not trivial, as thread safety has to be backported
to 0.9.7
)
+++ data/dla-needed.txt 2015-10-20 07:33:05 UTC (rev 37192)
@@ -37,7 +37,7 @@
phpmyadmin (Thijs Kinkhorst)
http://lists.debian.org/8d1ec56509c135da275476758673e47a.squir...@aphrodite.kinkhorst.nl
--
-polarssl
+polarssl (Thorsten Alteholz)
--
pound (Guido Günther
@@
--
bouncycastle
--
-freeimage (Thorsten Alteholz)
---
imagemagick
--
libphp-snoopy
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
Author: alteholz
Date: 2015-07-07 20:32:11 + (Tue, 07 Jul 2015)
New Revision: 35370
Modified:
data/DLA/list
Log:
Reserve DLA-269-1 for linux-ftpd-ssl
Modified: data/DLA/list
===
--- data/DLA/list 2015-07-07 20:02:08 UTC
@@
--
inspircd (Santiago R.R.)
--
-libunwind (Thorsten Alteholz)
---
libmimedir
--
libstruts1.2-java
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing
(Thorsten Alteholz)
- NOTE: upload in June/July
---
phpmyadmin (Thijs Kinkhorst)
http://lists.debian.org/8d1ec56509c135da275476758673e47a.squir...@aphrodite.kinkhorst.nl
--
___
Secure-testing-commits mailing list
Secure-testing-commits
36532)
+++ data/dla-needed.txt 2015-09-07 20:40:01 UTC (rev 36533)
@@ -28,6 +28,9 @@
--
openafs
--
+php5 (Thorsten Alteholz)
+ NOTE: next upload in October
+--
phpmyadmin (Thijs Kinkhorst)
http://lists.debian.org/8d1ec56509c135da275476758673e47a.squir...@aphrodite.kinkhorst.nl
@@
--
openafs
--
-openldap
---
php5 (Thorsten Alteholz)
NOTE: next upload in October
--
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
Author: alteholz
Date: 2015-09-15 10:29:53 + (Tue, 15 Sep 2015)
New Revision: 36681
Modified:
data/CVE/list
Log:
ipython in squeeze not affected by CVE-2015-6938
Modified: data/CVE/list
===
--- data/CVE/list 2015-09-15
Author: alteholz
Date: 2015-09-27 15:55:34 + (Sun, 27 Sep 2015)
New Revision: 36864
Modified:
data/dla-needed.txt
Log:
wget has been marked no-dsa
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2015-09-27 15:01:07
)
+++ data/dla-needed.txt 2015-09-19 21:04:09 UTC (rev 36758)
@@ -18,6 +18,8 @@
--
freeimage (Thorsten Alteholz)
--
+freetype
+--
fuseiso
--
libtorrent-rasterbar (Thorsten Alteholz)
___
Secure-testing-commits mailing list
Secure-testing-commits
Author: alteholz
Date: 2015-09-19 21:16:46 + (Sat, 19 Sep 2015)
New Revision: 36760
Modified:
data/dla-needed.txt
Log:
add rpcbind
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2015-09-19 21:10:11 UTC (rev 36759)
UTC (rev 36756)
+++ data/dla-needed.txt 2015-09-19 21:02:40 UTC (rev 36757)
@@ -20,7 +20,7 @@
--
fuseiso
--
-libtorrent-rasterbar
+libtorrent-rasterbar (Thorsten Alteholz)
--
libphp-snoopy
NOTE: maintainer might take care of it, cf
http://lists.debian.org/1424805686.2351.19.ca...@debian.org
36767)
@@ -22,8 +22,6 @@
--
fuseiso
--
-libtorrent-rasterbar (Thorsten Alteholz)
---
libphp-snoopy
NOTE: maintainer might take care of it, cf
http://lists.debian.org/1424805686.2351.19.ca...@debian.org
--
___
Secure-testing-commits mailing list
Author: alteholz
Date: 2015-09-20 13:09:54 + (Sun, 20 Sep 2015)
New Revision: 36766
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-311-1 for rpcbind
Modified: data/DLA/list
===
--- data/DLA/list
Author: alteholz
Date: 2015-09-19 13:50:26 + (Sat, 19 Sep 2015)
New Revision: 36754
Modified:
data/CVE/list
Log:
no support for ffmpeg in Squeeze LTS
Modified: data/CVE/list
===
--- data/CVE/list 2015-09-19 13:26:55 UTC
+25,6 @@
NOTE: a fix is probably not trivial, as thread safety has to be backported
to 0.9.7
NOTE: possibly ending up in ABI breakage, second opinion welcome!
--
-libxml2 (Thorsten Alteholz)
---
linux-2.6 (Ben Hutchings)
--
lxc (Mike Gabriel
Author: alteholz
Date: 2015-12-06 18:40:22 + (Sun, 06 Dec 2015)
New Revision: 38129
Modified:
data/CVE/list
Log:
set keepassx as no-dsa like Wheezy and Jessie
Modified: data/CVE/list
===
--- data/CVE/list 2015-12-06
(rev 38127)
+++ data/dla-needed.txt 2015-12-06 18:38:44 UTC (rev 38128)
@@ -17,10 +17,14 @@
dbconfig-common
NOTE: maintainer should take care of this, cf
https://lists.debian.org/565626bf.2010...@debian.org
--
+libpng (Thorsten Alteholz)
+--
libvncserver (Mike Gabriel)
NOTE: a fix
)
+++ data/dla-needed.txt 2015-12-06 19:08:25 UTC (rev 38131)
@@ -17,6 +17,8 @@
dbconfig-common
NOTE: maintainer should take care of this, cf
https://lists.debian.org/565626bf.2010...@debian.org
--
+dhcpcd
+--
libpng (Thorsten Alteholz)
--
libvncserver (Mike Gabriel
Author: alteholz
Date: 2015-12-06 19:13:39 + (Sun, 06 Dec 2015)
New Revision: 38133
Modified:
data/dla-needed.txt
Log:
add redmine
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2015-12-06 19:11:22 UTC (rev 38132)
(rev 38131)
+++ data/dla-needed.txt 2015-12-06 19:11:22 UTC (rev 38132)
@@ -19,6 +19,8 @@
--
dhcpcd
--
+libphp-phpmailer
+--
libpng (Thorsten Alteholz)
--
libvncserver (Mike Gabriel)
___
Secure-testing-commits mailing list
Secure-testing-commits
)
+++ data/dla-needed.txt 2015-12-06 22:03:16 UTC (rev 38141)
@@ -19,6 +19,8 @@
--
dhcpcd
--
+gnutls26
+--
libphp-phpmailer
--
libpng (Thorsten Alteholz)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http
://wiki.debian.org/LTS/Development#Triage_new_security_issues
--
-bind9 (Thorsten Alteholz)
---
busybox (Chris Lamb)
--
cacti (Chris Lamb)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http
)
+++ data/dla-needed.txt 2015-12-16 22:11:07 UTC (rev 38373)
@@ -9,7 +9,7 @@
https://wiki.debian.org/LTS/Development#Triage_new_security_issues
--
-bind9
+bind9 (Thorsten Alteholz)
--
busybox (Chris Lamb)
--
___
Secure-testing-commits mailing list
Author: alteholz
Date: 2015-12-22 21:37:54 + (Tue, 22 Dec 2015)
New Revision: 38482
Modified:
data/CVE/list
Log:
for libpng we already have the complete patch set in Squeeze
Modified: data/CVE/list
===
--- data/CVE/list
Author: alteholz
Date: 2015-12-23 15:33:23 + (Wed, 23 Dec 2015)
New Revision: 38497
Modified:
data/CVE/list
Log:
there are further patches needed for Squeeze
Modified: data/CVE/list
===
--- data/CVE/list 2015-12-23
Author: alteholz
Date: 2015-12-24 22:34:19 + (Thu, 24 Dec 2015)
New Revision: 38515
Modified:
data/CVE/list
Log:
vulnerable code for CVE-2015-0855 not present in Squeeze and Wheezy
Modified: data/CVE/list
===
---
Author: alteholz
Date: 2015-12-23 18:32:09 + (Wed, 23 Dec 2015)
New Revision: 38500
Modified:
data/CVE/list
Log:
t-coffee: Squeeze is not affected
Modified: data/CVE/list
===
--- data/CVE/list 2015-12-23 18:16:43 UTC
)
+++ data/dla-needed.txt 2015-12-26 13:05:52 UTC (rev 38526)
@@ -24,8 +24,6 @@
NOTE: a fix is probably not trivial, as thread safety has to be backported
to 0.9.7
NOTE: possibly ending up in ABI breakage, second opinion welcome!
--
-libxml2 (Thorsten Alteholz)
---
linux-2.6 (Ben Hutchings
(rev 38562)
+++ data/dla-needed.txt 2015-12-27 21:14:08 UTC (rev 38563)
@@ -28,7 +28,7 @@
NOTE: Trying to sync the solution for CVE-2015-4000 with security team first
NOTE: see https://lists.debian.org/debian-lts/2015/12/msg00025.html
--
-passenger
+passenger (Thorsten Alteholz)
NOTE: code
(rev 38561)
@@ -14,8 +14,6 @@
dbconfig-common
NOTE: maintainer should take care of this, cf
https://lists.debian.org/565626bf.2010...@debian.org
--
-libpng (Thorsten Alteholz)
---
libraw
--
libvncserver (Mike Gabriel)
___
Secure-testing-commits
Author: alteholz
Date: 2015-12-22 17:46:00 + (Tue, 22 Dec 2015)
New Revision: 38479
Modified:
data/CVE/list
Log:
vulnerable code not present in Squeeze (no eval call)
Modified: data/CVE/list
===
--- data/CVE/list
:36:08 UTC (rev 37982)
@@ -19,8 +19,6 @@
--
libphp-snoopy
--
-libsndfile (Thorsten Alteholz)
---
libvncserver (Mike Gabriel)
NOTE: a fix is probably not trivial, as thread safety has to be backported
to 0.9.7
NOTE: possibly ending up in ABI breakage, second opinion welcome!
@@ -31,7 +29,7
(rev 37739)
+++ data/dla-needed.txt 2015-11-17 19:06:12 UTC (rev 37740)
@@ -22,8 +22,6 @@
--
libphp-snoopy
--
-libpng (Thorsten Alteholz)
---
libsndfile (Thorsten Alteholz)
--
libvncserver (Mike Gabriel)
___
Secure-testing-commits mailing list
Secure
Author: alteholz
Date: 2016-06-08 20:34:20 + (Wed, 08 Jun 2016)
New Revision: 42403
Modified:
data/CVE/list
data/dla-needed.txt
Log:
mark mxml as in Wheezy like in Jessie
Modified: data/CVE/list
===
--- data/CVE/list
Author: alteholz
Date: 2016-05-26 14:09:58 + (Thu, 26 May 2016)
New Revision: 42046
Modified:
data/CVE/list
Log:
vulnerable code of CVE-2016-1903 also not present in Wheezy
Modified: data/CVE/list
===
--- data/CVE/list
42465)
+++ data/dla-needed.txt 2016-06-11 14:21:03 UTC (rev 42466)
@@ -38,7 +38,7 @@
The JSON/JaF doesn't appear to be present in wheezy but the
content-disposition stuff might be.
--
-libstruts1.2-java
+libstruts1.2-java (Thorsten Alteholz)
--
libxslt (Emilio Pozuelo)
--
@@ -100,7 +100,7
(rev 42190)
+++ data/dla-needed.txt 2016-05-31 17:22:24 UTC (rev 42191)
@@ -57,6 +57,8 @@
NOTE: maintainer would like help working on the updates but will handle the
updates himself
NOTE: 20160518175636.ga29...@roeckx.be
--
+php5 (Thorsten Alteholz)
+--
p7zip
NOTE: CPP/7zip/Archive/Udf
===
--- data/dla-needed.txt 2016-05-31 17:20:03 UTC (rev 42189)
+++ data/dla-needed.txt 2016-05-31 17:21:48 UTC (rev 42190)
@@ -60,9 +60,6 @@
p7zip
NOTE: CPP/7zip/Archive/Udf/UdfIn.cpp line 261?
--
-php5 (Thorsten Alteholz
42165)
@@ -38,8 +38,6 @@
The JSON/JaF doesn't appear to be present in wheezy but the
content-disposition stuff might be.
--
-libtasn1-3 (Thorsten Alteholz)
---
libxml2
NOTE: 20160226, no fix available yet
NOTE: carnil is looking in partially triaging the libxml2 issues as well for
wheezy
(rev 42115)
+++ data/dla-needed.txt 2016-05-29 12:56:17 UTC (rev 42116)
@@ -73,6 +73,7 @@
pdns (Guido Günther)
--
php5 (Thorsten Alteholz)
+ NOTE: package for testing uploaded
--
quagga
NOTE: see dsa-needed's notes.
___
Secure-testing-commits
@@
NOTE: maintainer would like help working on the updates but will handle the
updates himself
NOTE: 20160518175636.ga29...@roeckx.be
--
-openafs (Thorsten Alteholz)
- NOTE: package for testing uploaded
---
p7zip
NOTE: CPP/7zip/Archive/Udf/UdfIn.cpp line 261
Author: alteholz
Date: 2016-05-29 11:41:26 + (Sun, 29 May 2016)
New Revision: 42111
Modified:
data/dla-needed.txt
Log:
add libgd2 to dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-05-29 11:37:09
===
--- data/dla-needed.txt 2016-05-29 11:49:17 UTC (rev 42114)
+++ data/dla-needed.txt 2016-05-29 12:36:43 UTC (rev 42115)
@@ -74,9 +74,6 @@
--
php5 (Thorsten Alteholz)
--
-policykit-1
- NOTE: CVE-2016-2568 doesn't have a fix yet, 20160425
---
quagga
NOTE: see dsa
Author: alteholz
Date: 2016-05-29 13:52:09 + (Sun, 29 May 2016)
New Revision: 42119
Modified:
data/dla-needed.txt
Log:
add wordpress
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-05-29 13:31:12 UTC (rev
Author: alteholz
Date: 2016-05-29 11:37:09 + (Sun, 29 May 2016)
New Revision: 42110
Modified:
data/CVE/list
Log:
mark CVEs as in Wheezy as in Jessie
Modified: data/CVE/list
===
--- data/CVE/list 2016-05-29 09:16:07 UTC
Author: alteholz
Date: 2016-05-29 11:49:17 + (Sun, 29 May 2016)
New Revision: 42114
Modified:
data/dla-needed.txt
Log:
add extplorer
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-05-29 11:48:33 UTC (rev
Author: alteholz
Date: 2016-05-29 17:39:02 + (Sun, 29 May 2016)
New Revision: 42124
Modified:
data/CVE/list
Log:
mark some tiff CVEs as in Wheezy like in Jessie
Modified: data/CVE/list
===
--- data/CVE/list 2016-05-29
42125)
+++ data/dla-needed.txt 2016-05-29 17:46:32 UTC (rev 42126)
@@ -102,6 +102,8 @@
--
tiff3
--
+vlc (Thorsten Alteholz)
+--
wireshark (moeller)
--
wordpress
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
Author: alteholz
Date: 2016-05-29 17:40:50 + (Sun, 29 May 2016)
New Revision: 42125
Modified:
data/CVE/list
data/dla-needed.txt
Log:
mark x22vnc CVE as in Wheezy like in Jessie
Modified: data/CVE/list
===
---
UTC (rev 42677)
+++ data/dla-needed.txt 2016-06-21 20:20:12 UTC (rev 42678)
@@ -61,8 +61,6 @@
--
php5 (Thorsten Alteholz)
--
-python2.7 (Thorsten Alteholz)
---
qemu
--
qemu-kvm
___
Secure-testing-commits mailing list
Secure-testing-commits
42638)
+++ data/dla-needed.txt 2016-06-19 13:04:36 UTC (rev 42639)
@@ -55,6 +55,8 @@
--
php5 (Thorsten Alteholz)
--
+python2.7 (Thorsten Alteholz)
+--
qemu
--
qemu-kvm
___
Secure-testing-commits mailing list
Secure-testing-commits
Author: alteholz
Date: 2016-06-18 17:54:18 + (Sat, 18 Jun 2016)
New Revision: 42625
Modified:
data/dla-needed.txt
Log:
no progress for extplorer
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-06-18 17:42:41
===
--- data/dla-needed.txt 2016-06-18 13:33:59 UTC (rev 42623)
+++ data/dla-needed.txt 2016-06-18 17:42:41 UTC (rev 42624)
@@ -34,8 +34,6 @@
The JSON/JaF doesn't appear to be present in wheezy but the
content-disposition stuff might be.
--
-libstruts1.2-java (Thorsten Alteholz
)
--
-passenger (Thorsten Alteholz)
- NOTE: code is in ext/apache2/Hooks.cpp:sendHeaders()
---
php5 (Thorsten Alteholz)
NOTE: next upload end of December
--
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
Author: alteholz
Date: 2016-01-18 18:47:27 + (Mon, 18 Jan 2016)
New Revision: 39002
Modified:
data/CVE/list
Log:
moodle not supported in Squeeze
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-18 18:45:34 UTC (rev
--
-srtp (Thorsten Alteholz)
---
tiff
--
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
38983)
+++ data/dla-needed.txt 2016-01-17 14:54:12 UTC (rev 38984)
@@ -46,7 +46,7 @@
--
radicale
--
-roundcube
+roundcube (Thorsten Alteholz)
NOTE: Skin name sanitizing needs to be done in
roundcube-0.3.1-6/program/include/rcube_template.php (method: set_skin())
--
srtp (Thorsten Alteholz
@@
--
radicale
--
-roundcube (Thorsten Alteholz)
- NOTE: Skin name sanitizing needs to be done in
roundcube-0.3.1-6/program/include/rcube_template.php (method: set_skin())
---
srtp (Thorsten Alteholz)
--
tiff
___
Secure-testing-commits mailing list
Secure
Author: alteholz
Date: 2016-06-25 10:34:28 + (Sat, 25 Jun 2016)
New Revision: 42782
Modified:
data/dla-needed.txt
Log:
some of those CVEs must be an issue for Wheezy
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt
42787)
+++ data/dla-needed.txt 2016-06-25 15:10:02 UTC (rev 42788)
@@ -39,8 +39,12 @@
--
libcommons-fileupload-java (Markus Koschany)
--
+libgd2 (Thorsten Alteholz)
+--
libjackson-json-java
--
+libjgroups-java
+--
libspring-java
The JSON/JaF doesn't appear to be present in wheezy
)
+++ data/dla-needed.txt 2016-01-31 09:28:02 UTC (rev 39372)
@@ -46,6 +46,8 @@
--
jasper (Ben Hutchings)
--
+krb5 (Thorsten Alteholz)
+--
libraw
NOTE: libraw is not affected, but copies in other packages need to be checked
--
___
Secure-testing
Author: alteholz
Date: 2016-02-22 19:03:10 + (Mon, 22 Feb 2016)
New Revision: 39816
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-424-1 for didiwiki
Modified: data/DLA/list
===
--- data/DLA/list
)
@@ -40,8 +40,6 @@
--
jasper (Ben Hutchings)
--
-krb5 (Thorsten Alteholz)
---
libebml (Damyan Ivanov)
--
libxml2
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman
Author: alteholz
Date: 2016-02-25 18:31:02 + (Thu, 25 Feb 2016)
New Revision: 39927
Modified:
data/DLA/list
Log:
Reserve DLA-433-1 for xerces-c
Modified: data/DLA/list
===
--- data/DLA/list 2016-02-25 18:30:34 UTC (rev
--
-php5 (Thorsten Alteholz)
- NOTE: next upload end of December
---
policykit-1
--
squid
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
Author: alteholz
Date: 2016-02-29 18:57:56 + (Mon, 29 Feb 2016)
New Revision: 40067
Modified:
data/dla-needed.txt
Log:
libebml has been uploaded
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-02-29 18:51:51
Author: alteholz
Date: 2016-02-29 18:45:48 + (Mon, 29 Feb 2016)
New Revision: 40065
Modified:
data/CVE/list
Log:
temporary tags for Squeeze
Modified: data/CVE/list
===
--- data/CVE/list 2016-02-29 18:25:18 UTC (rev
Author: alteholz
Date: 2016-02-27 11:06:14 + (Sat, 27 Feb 2016)
New Revision: 39987
Modified:
data/CVE/list
Log:
vulnerable code not present in Squeeze
Modified: data/CVE/list
===
--- data/CVE/list 2016-02-27 10:58:46
Author: alteholz
Date: 2016-01-21 14:37:20 + (Thu, 21 Jan 2016)
New Revision: 39059
Modified:
data/CVE/list
Log:
mark CVE as no-dsa as backport would be too intrusive
Modified: data/CVE/list
===
--- data/CVE/list
Author: alteholz
Date: 2016-01-21 14:25:02 + (Thu, 21 Jan 2016)
New Revision: 39058
Modified:
data/CVE/list
Log:
temporary CVE marked as no-dsa as in Wheezy and Jessie
Modified: data/CVE/list
===
--- data/CVE/list
Author: alteholz
Date: 2016-01-20 21:29:27 + (Wed, 20 Jan 2016)
New Revision: 39051
Modified:
data/CVE/list
Log:
xen not supported in Squeeze
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-20 21:10:18 UTC (rev
Author: alteholz
Date: 2016-01-23 18:11:08 + (Sat, 23 Jan 2016)
New Revision: 39110
Modified:
data/dla-needed.txt
Log:
add cakephp
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-23 17:53:48 UTC (rev 39109)
Author: alteholz
Date: 2016-01-23 17:53:48 + (Sat, 23 Jan 2016)
New Revision: 39109
Modified:
data/DLA/list
Log:
correct typo
Modified: data/DLA/list
===
--- data/DLA/list 2016-01-23 17:48:13 UTC (rev 39108)
+++
)
+--
openssh (Guido Günther)
--
php5 (Thorsten Alteholz)
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
Author: alteholz
Date: 2016-01-23 18:17:02 + (Sat, 23 Jan 2016)
New Revision: 39112
Modified:
data/dla-needed.txt
Log:
add dwarfutils
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-23 18:15:03 UTC (rev
Author: alteholz
Date: 2016-01-23 18:18:03 + (Sat, 23 Jan 2016)
New Revision: 39113
Modified:
data/dla-needed.txt
Log:
add eglibc
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-23 18:17:02 UTC (rev 39112)
Author: alteholz
Date: 2016-01-23 18:25:28 + (Sat, 23 Jan 2016)
New Revision: 39114
Modified:
data/dla-needed.txt
Log:
add imagemagick
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-23 18:18:03 UTC (rev
+42,6 @@
pound (Brian May)
NOTE: updating to the wheezy option might be less error prone
--
-privoxy (Thorsten Alteholz)
---
radicale (Markus Koschany)
--
tiff (Santiago R.R.)
___
Secure-testing-commits mailing list
Secure-testing-commits
Author: alteholz
Date: 2016-01-23 18:15:03 + (Sat, 23 Jan 2016)
New Revision: 39111
Modified:
data/dla-needed.txt
Log:
add cpio
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-23 18:11:08 UTC (rev 39110)
+++
Author: alteholz
Date: 2016-01-23 22:35:19 + (Sat, 23 Jan 2016)
New Revision: 39123
Modified:
data/CVE/list
Log:
add note due to temporary CVE
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-23 22:32:48 UTC (rev
)
+++ data/dla-needed.txt 2016-01-23 22:38:31 UTC (rev 39124)
@@ -30,6 +30,8 @@
imagemagick
NOTE: only minor issues without CVE
--
+imlib2 (Thorsten Alteholz)
+--
jasper (Ben Hutchings)
--
libraw
___
Secure-testing-commits mailing list
Secure
Author: alteholz
Date: 2016-01-23 22:32:48 + (Sat, 23 Jan 2016)
New Revision: 39122
Modified:
data/DLA/list
Log:
Reserve DLA-399-1 for foomatic-filters
Modified: data/DLA/list
===
--- data/DLA/list 2016-01-23 22:15:43
Author: alteholz
Date: 2016-01-24 13:00:05 + (Sun, 24 Jan 2016)
New Revision: 39139
Modified:
data/CVE/list
Log:
mark php5 CVE as no-dsa as backport to Squeeze would be too intrusive
Modified: data/CVE/list
===
---
:31:29 UTC (rev 39138)
@@ -30,8 +30,6 @@
imagemagick
NOTE: only minor issues without CVE
--
-imlib2 (Thorsten Alteholz)
---
jasper (Ben Hutchings)
--
libraw
___
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http
Author: alteholz
Date: 2016-01-19 14:20:45 + (Tue, 19 Jan 2016)
New Revision: 39012
Modified:
data/CVE/list
Log:
php5 in Squeeze not affected by CVE-2016-1903
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-19
Author: alteholz
Date: 2016-01-20 12:41:12 + (Wed, 20 Jan 2016)
New Revision: 39041
Modified:
data/CVE/list
Log:
php5 in Squeeze not affected by CVE-2016-1904
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-20
Author: alteholz
Date: 2016-01-20 12:39:16 + (Wed, 20 Jan 2016)
New Revision: 39040
Modified:
data/CVE/list
Log:
no support for qemu in Squeeze
Modified: data/CVE/list
===
--- data/CVE/list 2016-01-20 09:38:07 UTC (rev
Author: alteholz
Date: 2016-01-20 12:43:20 + (Wed, 20 Jan 2016)
New Revision: 39042
Modified:
data/dla-needed.txt
Log:
add note to libraw
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-01-20 12:41:12 UTC (rev
201 - 300 of 760 matches
Mail list logo
