Mon, 21 May 2018 18:47:29 +0200 [SECURITY] [DSA 4206-1] gitlab security update Sat, 26 May 2018 13:29:30 +0000 [SECURITY] [DSA 4206-2] gitlab regression update Note: The fix for CVE-2018-8971 also requires ruby-omniauth-auth0 to be upgraded to version 2.0.0-0+deb9u1 Binary: gitlab Version: 8.13.11+dfsg1-8+deb9u3 Confirmed: ascii-security
Fri, 25 May 2018 21:02:26 +0000 [SECURITY] [DSA 4211-1] xdg-utils security update Binary: xdg-utils Version: 1.1.1-1+deb9u1 Confirmed: ascii-security Fri, 25 May 2018 07:00:47 +0200 [SECURITY] [DSA 4210-1] xen security update This update provides mitigations for the Spectre v4 variant in x86-based micro processors. On Intel CPUs this requires updated microcode which is currently not released publicly (but your hardware vendor may have issued an update). For servers with AMD CPUs no microcode update is needed, please refer to https://xenbits.xen.org/xsa/advisory-263.html for further information. Binary: libxen-4.8, libxenstore3.0, libxen-dev, xenstore-utils, xen-utils-common, xen-utils-4.8, xen-hypervisor-4.8-amd64, xen-system-amd64, xen-hypervisor-4.8-arm64, xen-system-arm64, xen-hypervisor-4.8-armhf, xen-system-armhf Version:4.8.3+xsa262+shim4.10.0+comet3-1+deb9u7 Confirmed: ascii-security Fri, 25 May 2018 06:58:06 +0200 [SECURITY] [DSA 4209-1] thunderbird security update Version: 1:52.8.0-1~deb9u1 Confirmed: ascii-security Note: beowulf and ceres contain version 1:52.8.0-1 Tue, 22 May 2018 15:45:25 +0000 [SECURITY] [DSA 4208-1] procps security update Binary: procps, libprocps6, libprocps-dev Debian Package (patched): 2:3.3.12-3+deb9u1 Confirmed: ascii-security Devuan Version : 2:3.3.12-3+devuan2. Note: potential apt pinning issues. # apt-cache policy procps procps: Installed: (none) Candidate: 2:3.3.12-3+devuan2 Version table: 2:3.3.12-3+devuan2 500 500 http://pkgmaster.devuan.org/merged ascii/main amd64 Packages -1 http://pkgmaster.devuan.org/devuan ascii/main amd64 Packages 2:3.3.12-3+deb9u1 500 500 http://pkgmaster.devuan.org/merged ascii-security/main amd64 Packages Tue, 22 May 2018 12:59:54 +0000 [SECURITY] [DSA 4207-1] packagekit security update Binary: packagekit, packagekit-tools, packagekit-docs, libpackagekit-glib2-18, libpackagekit-glib2-dev, gir1.2-packagekitglib-1.0, packagekit-gtk3-module, gstreamer1.0-packagekit, packagekit-command-not-found Version: 1.1.5-2+deb9u1 Confirmed: ascii-security _______________________________________________ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng