[Git][security-tracker-team/security-tracker][master] Follow up on webcit security issues in Stretch.

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: ca06d262 by Markus Koschany at 2020-12-10T23:43:58+01:00 Follow up on webcit security issues in Stretch. - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Remove webcit from dla-needed.txt

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 96173743 by Markus Koschany at 2020-12-10T22:53:54+01:00 Remove webcit from dla-needed.txt I am following the release team. The package was removed from Debian recently. Upstreams recommendation to

[Git][security-tracker-team/security-tracker][master] Reserve DLA-2490-1 for x11vnc

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: 32511e00 by Thorsten Alteholz at 2020-12-10T22:28:18+01:00 Reserve DLA-2490-1 for x11vnc - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-2489-1 for minidlna

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker Commits: abae4df6 by Thorsten Alteholz at 2020-12-10T22:25:35+01:00 Reserve DLA-2489-1 for minidlna - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-16587/openexr

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: b4479367 by Salvatore Bonaccorso at 2020-12-10T21:54:48+01:00 Add CVE-2020-16587/openexr - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-16589/openexr

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8f591009 by Salvatore Bonaccorso at 2020-12-10T21:52:19+01:00 Add CVE-2020-16589/openexr - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-16588/openexr

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 977af664 by Salvatore Bonaccorso at 2020-12-10T21:53:46+01:00 Add CVE-2020-16588/openexr - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Consider CVE-2019-20218 fixed with 3.16.2-5+deb9u3

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0dacc561 by Salvatore Bonaccorso at 2020-12-10T21:44:58+01:00 Consider CVE-2019-20218 fixed with 3.16.2-5+deb9u3 Since it is not only a functional regression, but the issue only fixed

[Git][security-tracker-team/security-tracker][master] Add new binutils issues

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9c6b0ca7 by Salvatore Bonaccorso at 2020-12-10T21:31:35+01:00 Add new binutils issues Mark them from start as unimportant as binutils is not covered by security support. - - - - - 1 changed

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ff93ccf2 by Salvatore Bonaccorso at 2020-12-10T21:29:05+01:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-29668/sympa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e57f371d by Salvatore Bonaccorso at 2020-12-10T21:18:59+01:00 Add CVE-2020-29668/sympa - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 84cf3720 by security tracker role at 2020-12-10T20:10:27+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] CVE-2020-26257/matrix-synapse fixed via unstable upload

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4a4ca5d1 by Salvatore Bonaccorso at 2020-12-10T16:45:55+01:00 CVE-2020-26257/matrix-synapse fixed via unstable upload - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add LP references for CVE-2020-2735{0,1}

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c944b59d by Salvatore Bonaccorso at 2020-12-10T16:44:23+01:00 Add LP references for CVE-2020-2735{0,1} - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-27351/python-apt via unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fd76ea37 by Salvatore Bonaccorso at 2020-12-10T16:41:46+01:00 Track fixed version for CVE-2020-27351/python-apt via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] CVE-2020-27350: Mark fixed in unstable via apt 2.1.13

Tianon Gravi pushed to branch master at Debian Security Tracker / security-tracker Commits: 2f84e050 by Tianon Gravi at 2020-12-10T07:37:43-08:00 CVE-2020-27350: Mark fixed in unstable via apt 2.1.13 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-2340-2 for sqlite3

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker Commits: 138ee6ba by Roberto C. Sánchez at 2020-12-10T09:25:52-05:00 Reserve DLA-2340-2 for sqlite3 - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] lts: take openssl at Utkarsh's request

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 58daa1a3 by Emilio Pozuelo Monfort at 2020-12-10T12:59:07+01:00 lts: take openssl at Utkarshs request - - - - - 1 changed file: - data/dla-needed.txt Changes:

[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2020-16600 in mupdf for stretch LTS.

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 029edb30 by Chris Lamb at 2020-12-10T10:40:38+00:00 Triage CVE-2020-16600 in mupdf for stretch LTS. - - - - - 539b9658 by Chris Lamb at 2020-12-10T10:44:31+00:00 Triage CVE-2020-29651 in pypy and

[Git][security-tracker-team/security-tracker][master] Add fixed version via unstable for CVE-2020-28241/libmaxminddb

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fd67ecea by Salvatore Bonaccorso at 2020-12-10T11:23:39+01:00 Add fixed version via unstable for CVE-2020-28241/libmaxminddb - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] NFU, concludes external check

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: b0ffdbef by Moritz Muehlenhoff at 2020-12-10T11:18:26+01:00 NFU, concludes external check - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-16600/mupdf

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 92a722fe by Salvatore Bonaccorso at 2020-12-10T09:43:37+01:00 Add CVE-2020-16600/mupdf - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-26257/matrix-synapse

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 155cc65e by Salvatore Bonaccorso at 2020-12-10T09:37:30+01:00 Add CVE-2020-26257/matrix-synapse - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Process several NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 88d87ff9 by Salvatore Bonaccorso at 2020-12-10T09:32:36+01:00 Process several NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9195b929 by security tracker role at 2020-12-10T08:10:24+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list