[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2017-1000082/systemd

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: aad473dc by Salvatore Bonaccorso at 2018-01-02T05:56:58+01:00 Add fixing version for CVE-2017-182/systemd Issue was fixed upstream in 234, first version in unstable containing the fix was

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2017-1000082/systemd

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 955338c3 by Salvatore Bonaccorso at 2018-01-02T06:00:19+01:00 Reference fix for CVE-2017-182/systemd - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-17066/i2pd: fixed with initial upload

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 18c988ae by Salvatore Bonaccorso at 2018-01-02T06:05:48+01:00 Update information for CVE-2017-17066/i2pd: fixed with initial upload - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add note for CVE-2017-14034

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6d9cbe09 by Salvatore Bonaccorso at 2018-01-02T06:15:13+01:00 Add note for CVE-2017-14034 Add note referinging issue with three libbpg bugs. The third issue from the referenced link corresponds

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process two NFUs

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fe24d28e by Salvatore Bonaccorso at 2018-01-02T06:21:49+01:00 Process two NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process one more NFU

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6b8d3d47 by Salvatore Bonaccorso at 2018-01-01T11:30:03+01:00 Process one more NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process more NFUs

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ebc69ed4 by Salvatore Bonaccorso at 2018-01-01T11:45:16+01:00 Process more NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process NFUs

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8183f4e3 by Salvatore Bonaccorso at 2018-01-01T11:28:52+01:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18008/imagemagick

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1e3f6914 by Salvatore Bonaccorso at 2018-01-01T11:09:31+01:00 Add CVE-2017-18008/imagemagick - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add new list for security-frontdesk for 2018

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 55241915 by Salvatore Bonaccorso at 2018-01-01T14:10:07+01:00 Add new list for security-frontdesk for 2018 - - - - - 1 changed file: - + org/security-frontdesk.2018.txt Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2017-17669/exiv2: #886006

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 06251518 by Salvatore Bonaccorso at 2018-01-01T15:04:39+01:00 Add bug reference for CVE-2017-17669/exiv2: #886006 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] LTS: note CVE-2017-18013 affects tiff3

2018-01-01 Thread Roberto C . Sánchez
Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker Commits: 50bc4c89 by Roberto C. Sánchez at 2018-01-01T12:31:12-05:00 LTS: note CVE-2017-18013 affects tiff3 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reserve DLA-1227-1 for imagemagick

2018-01-01 Thread Markus Koschany
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: f97508e2 by Markus Koschany at 2018-01-01T18:49:24+01:00 Reserve DLA-1227-1 for imagemagick - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Adjust status for tiff3 for CVE-2017-18013

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 83bc7545 by Salvatore Bonaccorso at 2018-01-01T19:00:23+01:00 Adjust status for tiff3 for CVE-2017-18013 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2017-18013/tiff fixed in unstable

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c2012b96 by Salvatore Bonaccorso at 2018-01-01T19:01:10+01:00 CVE-2017-18013/tiff fixed in unstable - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2017-17531/global fixed in unstable via new upstream version

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6641c72e by Salvatore Bonaccorso at 2018-01-01T19:03:52+01:00 CVE-2017-17531/global fixed in unstable via new upstream version - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1861dbb6 by security tracker role at 2018-01-01T09:10:11+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-18005/exiv2 as no-dsa in wheezy

2018-01-01 Thread Chris Lamb
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 20ad78ef by Chris Lamb at 2018-01-01T12:31:24+00:00 Mark CVE-2017-18005/exiv2 as no-dsa in wheezy - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reference fix/PR for CVE-2017-18005/exiv2

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f46efef4 by Salvatore Bonaccorso at 2018-01-01T10:35:20+01:00 Reference fix/PR for CVE-2017-18005/exiv2 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add bug reference for CVE-2017-18005, #885981

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 16a13d7d by Salvatore Bonaccorso at 2018-01-01T10:51:13+01:00 Add bug reference for CVE-2017-18005, #885981 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: NFU

2018-01-01 Thread Raphael Geissert
Raphael Geissert pushed to branch master at Debian Security Tracker / security-tracker Commits: 3e19fa1a by Raphael Geissert at 2018-01-01T21:43:34+01:00 NFU - - - - - abfe56f4 by Raphael Geissert at 2018-01-01T21:46:23+01:00 One issue possibly affecting ffmpeg, or x265 - - - - - 1 changed

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Assign myself to frontdesk duties in 2018.

2018-01-01 Thread Markus Koschany
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: a6e23b98 by Markus Koschany at 2018-01-01T20:37:27+01:00 Assign myself to frontdesk duties in 2018. - - - - - 469bae24 by Markus Koschany at 2018-01-01T20:39:07+01:00 Merge branch master of

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Process some NFUs

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c6a1f793 by Salvatore Bonaccorso at 2018-01-01T20:41:11+01:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Drop TODO, no need to track

2018-01-01 Thread Moritz Muehlenhoff
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 8a661ade by Moritz Muehlenhoff at 2018-01-01T22:48:25+01:00 Drop TODO, no need to track - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Need to check i2pd now after entering the archive

2018-01-01 Thread László Böszörményi
László Böszörményi pushed to branch master at Debian Security Tracker / security-tracker Commits: 951d1810 by Laszlo Boszormenyi (GCS) at 2018-01-01T22:13:59+00:00 Need to check i2pd now after entering the archive - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] automatic update

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a62d3e93 by security tracker role at 2018-01-01T21:10:18+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Reference merged fix for CVE-2017-17497/tidy-html5

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5c83bfb4 by Salvatore Bonaccorso at 2018-01-01T20:09:41+01:00 Reference merged fix for CVE-2017-17497/tidy-html5 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-17821 for WebKit issue

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9a7c694d by Salvatore Bonaccorso at 2018-01-01T20:27:40+01:00 Add CVE-2017-17821 for WebKit issue Quickly checked webkit2gtk only and marked as unimportant as not supported security-wise. The

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2017-18005/exiv2 as no-dsa

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: defdfb8d by Salvatore Bonaccorso at 2018-01-01T10:27:58+01:00 Mark CVE-2017-18005/exiv2 as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] LTS: add exiv2 along with note that CVE-2017-17669 applies

2018-01-01 Thread Roberto C . Sánchez
: = data/dla-needed.txt = --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -17,6 +17,9 @@ ca-certificates couchdb NOTE: Only in wheezy, we are on our own. -- +exiv2 + NOTE: 20180101: built wheezy version with ASAN in jessie

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add fixed versions for gimp issues

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 5b36696a by Salvatore Bonaccorso at 2018-01-01T10:41:45+01:00 Add fixed versions for gimp issues - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18013/tiff

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d477fa14 by Salvatore Bonaccorso at 2018-01-01T10:55:10+01:00 Add CVE-2017-18013/tiff - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18009/opencv

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8e0cdf0b by Salvatore Bonaccorso at 2018-01-01T11:26:39+01:00 Add CVE-2017-18009/opencv - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-17669/exiv2, checked and issue present in 0.24-1

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 91e22def by Salvatore Bonaccorso at 2018-01-01T14:59:07+01:00 Add CVE-2017-17669/exiv2, checked and issue present in 0.24-1 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2017-18013/tiff: Add bug reference: #885985

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8b8b96ad by Salvatore Bonaccorso at 2018-01-01T11:13:45+01:00 CVE-2017-18013/tiff: Add bug reference: #885985 - - - - - 1 changed file: - data/CVE/list Changes:

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18005/exiv2

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 01a764db by Salvatore Bonaccorso at 2018-01-01T10:25:02+01:00 Add CVE-2017-18005/exiv2 - - - - - 1 changed file: - data/CVE/list Changes: =

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark rails issues as unimportante, non-issues/negliglible imapct

2018-01-01 Thread Salvatore Bonaccorso
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1b883fa9 by Salvatore Bonaccorso at 2018-01-01T14:19:18+01:00 Mark rails issues as unimportante, non-issues/negliglible imapct All of the methods are confirmed from upstream to be designed such

[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2017-17499, imagemagick: Wheezy is not affected.

2018-01-01 Thread Markus Koschany
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: bf403945 by Markus Koschany at 2018-01-01T18:37:12+01:00 CVE-2017-17499,imagemagick: Wheezy is not affected. Vulnerable function not present. - - - - - 41dab063 by Markus Koschany at