Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f69de693 by Salvatore Bonaccorso at 2023-04-24T07:01:52+02:00
Make temporary descriptions stable until CVEs published
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
71689fd1 by Salvatore Bonaccorso at 2023-04-24T06:59:16+02:00
Remove notes from CVE-2023-289{97,98,99}, VE-2023-29000
- - - - -
1 changed file:
- data/CVE/list
Changes:
Anton Gladky pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
aa52fed0 by Anton Gladky at 2023-04-24T06:51:20+02:00
LTS: update notes on docker
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
=
@@ -287,7 +287,7 @@ sniproxy (Thorsten Alteholz)
NOTE: 20230423: Programming language: C.
NOTE: 20230423: Rather severe issue but very few users. (opal).
--
-sssd
+sssd (gladk)
NOTE: 20230131: Programming language: C.
NOTE: 20230205: VCS: https
Anton Gladky pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b660147b by Anton Gladky at 2023-04-24T06:28:47+02:00
Reserve DLA-3399-1 for 389-ds-base
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
Ben Hutchings pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fd21b526 by Ben Hutchings at 2023-04-24T00:39:48+02:00
Fill in details of the CVE IDs assigned for sgt-puzzles
7 CVE IDs have been assigned, but not published, for issues covered by
Debian bug
--
@@ -262,6 +262,7 @@ rainloop
ring (Thorsten Alteholz)
NOTE: 20221120: Programming language: C.
NOTE: 20230111: VCS: https://salsa.debian.org/lts-team/packages/ring.git
+ NOTE: 20230423: move CVEs appeared
--
ruby-loofah (dleidert)
NOTE: 20221231: Programming language: Ruby
:
=
data/dla-needed.txt
=
@@ -59,6 +59,9 @@ emacs
NOTE: 20230228: Waiting for confirmation that CVE-2022-48337 regression
NOTE: 20230228: is fixed. (bunk)
--
+epiphany-browser
+ NOTE: 20230423: Programming language: C.
+--
erlang
NOTE: 20221119
/dla-needed.txt
=
@@ -286,6 +286,10 @@ samba
NOTE: 20220904: Many postponed or open CVE in general. (apo)
NOTE: 20230323: Still working on the long list of CVEs, will likely release
an intermittent package first (lee)
--
+sniproxy
+ NOTE: 20230423
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6ba5e905 by Ola Lundqvist at 2023-04-23T22:27:04+02:00
Marked imagemagick CVE-2023-1906 as no-dsa for buster since it is a denial of
service vulnerability and this follows the practice for other
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d13ba436 by Ola Lundqvist at 2023-04-23T22:22:24+02:00
After source code analysis it is clear that CVE-2023-298997 through
CVE-2023-29000 applies to pre 3.0 version even though the text tells
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8408670a by security tracker role at 2023-04-23T20:10:21+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9bc68de9 by Salvatore Bonaccorso at 2023-04-23T21:29:30+02:00
Remove notes from CVE-2021-41259
Rejected by the assigning CNA.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cef56e87 by Salvatore Bonaccorso at 2023-04-23T21:24:41+02:00
Remove note from CVE-2023-24367
CVE got withdrawn as further investigation showed that there is no
security issue.
- - - - -
1
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
983c92a2 by Salvatore Bonaccorso at 2023-04-23T21:23:09+02:00
Remove notes from CVE-2023-24787
CVE got rejected as duplicate.
- - - - -
1 changed file:
- data/CVE/list
Changes:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
720c07a5 by Salvatore Bonaccorso at 2023-04-23T19:15:33+02:00
Track fixed version via unstable for CVE-2023-26964/rust-h2
- - - - -
1 changed file:
- data/CVE/list
Changes:
/dla-needed.txt
=
@@ -135,6 +135,11 @@ mariadb-10.3
NOTE: 20230225: Testsuite:
https://lists.debian.org/debian-lts/2019/07/msg00049.html
NOTE: 20230225: Maintainer notes: Contact original maintainer, Otto.
--
+nbconvert
+ NOTE: 20230423: Programming
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b38954ed by Ola Lundqvist at 2023-04-23T14:21:52+02:00
CVE-2021-32921 marked as no-dsa for buster since the impact is low. Upstream
has considered the impact too low to fix it.
- - - - -
1 changed
Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f2259fb6 by Ola Lundqvist at 2023-04-23T10:46:45+02:00
Marked CVE-2021-28235 as no-dsa for package etcd in buster since the issue only
occur with debug enabled.
- - - - -
1 changed file:
-
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
679f6d83 by Chris Lamb at 2023-04-23T09:43:51+01:00
data/DLA/list: Correct src:connman version number for DLA-3397-1.
Another update not committed to the LTS git repo..
- - - - -
1 changed file:
-
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3a6f6d08 by security tracker role at 2023-04-23T08:10:15+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
21 matches
Mail list logo