[Secure-testing-commits] r57823 - data/CVE

Author: carnil Date: 2017-11-19 13:39:21 + (Sun, 19 Nov 2017) New Revision: 57823 Modified: data/CVE/list Log: Add bug report for CVE-2017-16808 Modified: data/CVE/list === --- data/CVE/list 2017-11-19 13:15:45 UTC (rev

[Secure-testing-commits] r57826 - data/CVE

Author: carnil Date: 2017-11-19 15:49:15 + (Sun, 19 Nov 2017) New Revision: 57826 Modified: data/CVE/list Log: Expand todo note for CVE-2017-15864 Modified: data/CVE/list === --- data/CVE/list 2017-11-19 14:24:53 UTC

[Secure-testing-commits] r57828 - data/CVE

Author: carnil Date: 2017-11-19 16:11:10 + (Sun, 19 Nov 2017) New Revision: 57828 Modified: data/CVE/list Log: CVE-2017-15642/sox no-dsa for stretch and jessie Modified: data/CVE/list === --- data/CVE/list 2017-11-19

[Secure-testing-commits] r57831 - data/CVE

Author: alteholz Date: 2017-11-19 16:20:14 + (Sun, 19 Nov 2017) New Revision: 57831 Modified: data/CVE/list Log: CVE does not affect Debian Modified: data/CVE/list === --- data/CVE/list 2017-11-19 16:14:33 UTC (rev

[Secure-testing-commits] r57822 - data

Author: carnil Date: 2017-11-19 13:15:45 + (Sun, 19 Nov 2017) New Revision: 57822 Modified: data/next-oldstable-point-update.txt Log: Remove two CVEs which we addressed in DSA Modified: data/next-oldstable-point-update.txt

[Secure-testing-commits] r57824 - data/CVE

Author: carnil Date: 2017-11-19 14:15:31 + (Sun, 19 Nov 2017) New Revision: 57824 Modified: data/CVE/list Log: Add bug reference for CVE-2017-16805 and mark as no-dsa Modified: data/CVE/list === --- data/CVE/list

[Secure-testing-commits] r57832 - in data: . DLA

Author: apo Date: 2017-11-19 16:57:16 + (Sun, 19 Nov 2017) New Revision: 57832 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-1180-1 for libspring-ldap-java Modified: data/DLA/list === --- data/DLA/list

[Secure-testing-commits] r57827 - data

Author: apo Date: 2017-11-19 16:08:56 + (Sun, 19 Nov 2017) New Revision: 57827 Modified: data/dla-needed.txt Log: Claim optipng in dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-11-19 15:49:15

[Secure-testing-commits] r57829 - data/CVE

Author: carnil Date: 2017-11-19 16:14:22 + (Sun, 19 Nov 2017) New Revision: 57829 Modified: data/CVE/list Log: CVE-2017-1000229: Reference proposed patch Modified: data/CVE/list === --- data/CVE/list 2017-11-19 16:11:10

[Secure-testing-commits] r57830 - data/CVE

Author: carnil Date: 2017-11-19 16:14:33 + (Sun, 19 Nov 2017) New Revision: 57830 Modified: data/CVE/list Log: Add bug reference for CVE-2017-15642/sox, #882144 Modified: data/CVE/list === --- data/CVE/list 2017-11-19

[Secure-testing-commits] r57825 - data/CVE

Author: carnil Date: 2017-11-19 14:24:53 + (Sun, 19 Nov 2017) New Revision: 57825 Modified: data/CVE/list Log: Add bug reference for CVE-2017-16845, #882136, mark as no-dsa Modified: data/CVE/list === --- data/CVE/list

[Secure-testing-commits] r57836 - data/CVE

Author: pochu Date: 2017-11-19 19:30:34 + (Sun, 19 Nov 2017) New Revision: 57836 Modified: data/CVE/list Log: some xorg-server CVEs n/a on wheezy Modified: data/CVE/list === --- data/CVE/list 2017-11-19 19:24:14 UTC

[Secure-testing-commits] r57833 - data/CVE

Author: carnil Date: 2017-11-19 19:12:05 + (Sun, 19 Nov 2017) New Revision: 57833 Modified: data/CVE/list Log: Add two more commits for CVE-2017-15994/rsync Modified: data/CVE/list === --- data/CVE/list 2017-11-19

[Secure-testing-commits] r57835 - data/CVE

Author: carnil Date: 2017-11-19 19:24:14 + (Sun, 19 Nov 2017) New Revision: 57835 Modified: data/CVE/list Log: Mark CVE-2017-15994 as not-affected As argued in previous commit message follow Thorsten Alteholz analysis. Modified: data/CVE/list

[Secure-testing-commits] r57834 - data/CVE

Author: carnil Date: 2017-11-19 19:22:54 + (Sun, 19 Nov 2017) New Revision: 57834 Modified: data/CVE/list Log: Add note on commit introducing the --checksum-choice option Note for reviewers: Possibly only after that commit the archaic checksums are not properly handled. Before that there

[Secure-testing-commits] r57839 - data/CVE

Author: carnil Date: 2017-11-19 20:13:56 + (Sun, 19 Nov 2017) New Revision: 57839 Modified: data/CVE/list Log: Add todo for CVE-2017-15371 Modified: data/CVE/list === --- data/CVE/list 2017-11-19 20:04:24 UTC (rev

[Secure-testing-commits] r57837 - data/CVE

Author: carnil Date: 2017-11-19 20:02:54 + (Sun, 19 Nov 2017) New Revision: 57837 Modified: data/CVE/list Log: Three CVEs verified to be fixed for sox in experimental Modified: data/CVE/list === --- data/CVE/list

[Secure-testing-commits] r57838 - data/CVE

Author: carnil Date: 2017-11-19 20:04:24 + (Sun, 19 Nov 2017) New Revision: 57838 Modified: data/CVE/list Log: Add fixing version for CVE-2017-15370 in experimental Modified: data/CVE/list === --- data/CVE/list

[Secure-testing-commits] r57840 - data/CVE

Author: sectracker Date: 2017-11-19 21:10:15 + (Sun, 19 Nov 2017) New Revision: 57840 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-11-19 20:13:56 UTC (rev 57839) +++

[Secure-testing-commits] r57841 - data/CVE

Author: jmm Date: 2017-11-19 21:45:54 + (Sun, 19 Nov 2017) New Revision: 57841 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-11-19 21:10:15 UTC (rev 57840) +++ data/CVE/list

[Secure-testing-commits] r57816 - data/CVE

Author: sectracker Date: 2017-11-19 09:10:16 + (Sun, 19 Nov 2017) New Revision: 57816 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-11-19 08:45:39 UTC (rev 57815) +++

[Secure-testing-commits] r57820 - data/CVE

Author: carnil Date: 2017-11-19 12:39:48 + (Sun, 19 Nov 2017) New Revision: 57820 Modified: data/CVE/list Log: Change CVE-2012-5855 to still record the source package but align for/to similar cases Modified: data/CVE/list

[Secure-testing-commits] r57815 - in data: . DSA

Author: carnil Date: 2017-11-19 08:45:39 + (Sun, 19 Nov 2017) New Revision: 57815 Modified: data/DSA/list data/dsa-needed.txt Log: Reserve DSA number for procmail Modified: data/DSA/list === --- data/DSA/list

[Secure-testing-commits] r57821 - data/CVE

Author: carnil Date: 2017-11-19 12:40:58 + (Sun, 19 Nov 2017) New Revision: 57821 Modified: data/CVE/list Log: Record fix in experimental for two glibc issues Modified: data/CVE/list === --- data/CVE/list 2017-11-19

[Secure-testing-commits] r57812 - data/CVE

Author: carnil Date: 2017-11-19 08:11:51 + (Sun, 19 Nov 2017) New Revision: 57812 Modified: data/CVE/list Log: php5 is removed, correct status Since 5.4.4.-1 php5 used system libzip although the ext file might be compiled. Mark issue as unimportant. Modified: data/CVE/list

[Secure-testing-commits] r57814 - data/CVE

Author: carnil Date: 2017-11-19 08:12:23 + (Sun, 19 Nov 2017) New Revision: 57814 Modified: data/CVE/list Log: p3scan removed from the archive Modified: data/CVE/list === --- data/CVE/list 2017-11-19 08:12:11 UTC (rev

[Secure-testing-commits] r57813 - data/CVE

Author: carnil Date: 2017-11-19 08:12:11 + (Sun, 19 Nov 2017) New Revision: 57813 Modified: data/CVE/list Log: Remove reference to issues/1248 for exiv2 Reason: http://www.openwall.com/lists/oss-security/2017/06/30/1 . The three assigned CVEs are different issues. Hanno Boeck stated in

[Secure-testing-commits] r57819 - data/CVE

Author: sramacher Date: 2017-11-19 12:30:09 + (Sun, 19 Nov 2017) New Revision: 57819 Modified: data/CVE/list Log: CVE-2012-5855 is Windows only Modified: data/CVE/list === --- data/CVE/list 2017-11-19 12:04:11 UTC (rev

[Secure-testing-commits] r57817 - in data: . DSA

Author: carnil Date: 2017-11-19 10:17:07 + (Sun, 19 Nov 2017) New Revision: 57817 Modified: data/DSA/list data/dsa-needed.txt Log: Reserve DSA number for libxml-libxml-perl update Modified: data/DSA/list === ---

[Secure-testing-commits] r57818 - data/CVE

Author: jmm Date: 2017-11-19 12:04:11 + (Sun, 19 Nov 2017) New Revision: 57818 Modified: data/CVE/list Log: jenkins NFUs Modified: data/CVE/list === --- data/CVE/list 2017-11-19 10:17:07 UTC (rev 57817) +++

[Secure-testing-commits] r57842 - data/CVE

Author: carnil Date: 2017-11-20 05:59:51 + (Mon, 20 Nov 2017) New Revision: 57842 Modified: data/CVE/list Log: Record fixing version in experimental for CVE-2017-15371 Modified: data/CVE/list === --- data/CVE/list