[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 721d0e5a by Adrian Bunk at 2020-10-11T22:39:58+03:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -206,5 +206,5 @@ xcftools NOTE: 20200605: Patch https://salsa.debian.org/lts-team/packages/xcftools/-/blob/fix/test-CVE-2019-5087/debian/patches/CVE-2019-5087.patch (gladk) -- zeromq3 (Adrian Bunk) - NOTE: 20200928: testing fixed package (bunk) + NOTE: 20201011: testing fixed package (bunk) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/721d0e5a2b18dafd9a01051e7f1f6d57f1e51c10 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/721d0e5a2b18dafd9a01051e7f1f6d57f1e51c10 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: af943c83 by Adrian Bunk at 2020-05-25T09:10:57+03:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -94,7 +94,7 @@ php5 (Thorsten Alteholz) NOTE: 20200524: new CVE arrived (thorsten) -- qemu (Adrian Bunk) - NOTE: 20200511: work is ongoing (bunk) + NOTE: 20200525: work is ongoing (bunk) -- salt (Abhijith PA) NOTE: 20200501: Upstream fix for CVE-CVE-2020-11651 causes a regression. Should be fixed too. (Ola) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af943c830cab479e9286e2f444e2f38d7d13899a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af943c830cab479e9286e2f444e2f38d7d13899a You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: d0eac63d by Adrian Bunk at 2020-05-11T00:57:57+03:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -81,6 +81,7 @@ php5 (Thorsten Alteholz) NOTE: 20200427: embedded software "file" needs fix for CVE-2019-18218 -- qemu (Adrian Bunk) + NOTE: 20200511: work is ongoing -- salt (Abhijith PA) NOTE: 20200501: Upstream fix for CVE-CVE-2020-11651 causes a regression. Should be fixed too. (Ola) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0eac63d8fdd82d356b9a14ad4c63b0f03c78602 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d0eac63d8fdd82d356b9a14ad4c63b0f03c78602 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: cb768cff by Adrian Bunk at 2020-04-20T07:33:38+03:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -32,7 +32,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20200406: work is ongoing + NOTE: 20200420: work is ongoing -- libntlm (Anton Gladky) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb768cff2c7a0f91ed83c918be7bc9f68fb3c4ee -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cb768cff2c7a0f91ed83c918be7bc9f68fb3c4ee You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: acfe473d by Adrian Bunk at 2020-04-06T01:02:11+03:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -32,7 +32,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20200323: work is ongoing + NOTE: 20200406: work is ongoing -- libperlspeak-perl (Mike Gabriel) NOTE: 20200326: No patches yet. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acfe473df9ea9fc3b23b3aad545a596ebbb4a086 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acfe473df9ea9fc3b23b3aad545a596ebbb4a086 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 47e8382a by Adrian Bunk at 2020-03-09T08:11:57+02:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -29,7 +29,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20200223: work is ongoing + NOTE: 20200309: work is ongoing -- libmtp (Dylan Aïssi) NOTE: 20200309: WIP. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/47e8382a0bb749d8f9c7399f141e98ec960e0a81 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/47e8382a0bb749d8f9c7399f141e98ec960e0a81 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: a7b53845 by Adrian Bunk at 2020-02-23T20:15:55+02:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -29,7 +29,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20200210: work is ongoing + NOTE: 20200223: work is ongoing -- linux (Ben Hutchings) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a7b53845db223a9d7c37afe2914fa6eb120e0399 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a7b53845db223a9d7c37afe2914fa6eb120e0399 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 055c4395 by Adrian Bunk at 2020-02-10T00:30:03+02:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -47,7 +47,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20200127: work is ongoing + NOTE: 20200210: work is ongoing -- linux (Ben Hutchings) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/055c43950c37ff7c239d68300bdd492fc7aaffbd -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/055c43950c37ff7c239d68300bdd492fc7aaffbd You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 55ef83fd by Adrian Bunk at 2020-01-27T00:10:26+02:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -50,7 +50,7 @@ libexif (Hugo Lefeuvre) NOTE: 20200111: to get access to the reproducer. (hle) -- libjackson-json-java (Adrian Bunk) - NOTE: 20200112: work is ongoing + NOTE: 20200127: work is ongoing -- libmatio (Adrian Bunk) NOTE: fairly high number of open issues. Not sure why we never had a look at them. @@ -62,7 +62,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20200112: work is ongoing + NOTE: 20200127: work is ongoing -- libsolv NOTE: 20200123: Mike is maintainer View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/55ef83fdcdd6b23ba32040ff32950594c92a522e -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/55ef83fdcdd6b23ba32040ff32950594c92a522e You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 6ea89637 by Adrian Bunk at 2020-01-12T22:09:50+02:00 dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -49,7 +49,7 @@ libexif (Hugo Lefeuvre) NOTE: 20200111: to get access to the reproducer. (hle) -- libjackson-json-java (Adrian Bunk) - NOTE: 20191230: work is ongoing + NOTE: 20200112: work is ongoing -- libmatio (Adrian Bunk) NOTE: fairly high number of open issues. Not sure why we never had a look at them. @@ -61,7 +61,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20191223: work is ongoing + NOTE: 20200112: work is ongoing -- linux (Ben Hutchings) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6ea896374ebfc5a503207b7b3d988c0eacbe5702 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6ea896374ebfc5a503207b7b3d988c0eacbe5702 You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: Still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 13c3704a by Adrian Bunk at 2019-12-30T06:02:19Z dla: Still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -33,7 +33,7 @@ intel-microcode (Markus Koschany) NOTE: 20191218: Should be based on DSA-4565-2 -- jhead (Adrian Bunk) - NOTE: 20191216: work is ongoing + NOTE: 20191230: work is ongoing -- libexif (Hugo Lefeuvre) NOTE: 2019: Contacted upstream for relevant commits of CVE-2019-9278. (utkarsh2102) @@ -44,7 +44,7 @@ libexif (Hugo Lefeuvre) NOTE: 20191216: The problem is the file to trigger the fault is not known. (ola) -- libjackson-json-java (Adrian Bunk) - NOTE: 20191216: work is ongoing + NOTE: 20191230: work is ongoing -- libmatio (Adrian Bunk) NOTE: fairly high number of open issues. Not sure why we never had a look at them. View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/13c3704a23c24b9f643d8d338feb3492e68becab -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/13c3704a23c24b9f643d8d338feb3492e68becab You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 81bc7576 by Adrian Bunk at 2019-12-22T23:03:11Z dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -56,7 +56,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20191208: work is ongoing + NOTE: 20191223: work is ongoing -- linux (Ben Hutchings) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/81bc757680c2a23663a26517e1200a45c5761e8b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/81bc757680c2a23663a26517e1200a45c5761e8b You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
[Git][security-tracker-team/security-tracker][master] dla: still ongoing
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker Commits: 499c321f by Adrian Bunk at 2019-12-08T19:18:09Z dla: still ongoing - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt = @@ -61,7 +61,7 @@ libmatio (Adrian Bunk) NOTE: 20190428: is likely vulnerable NOTE: 20190428: some CVE testcases still fail after applying the fix, NOTE: 20190428: older changes seem to also be required for them - NOTE: 20191124: work is ongoing + NOTE: 20191208: work is ongoing -- linux (Ben Hutchings) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/499c321faf1a104e8cdb71cd52db4b4360d5881f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/499c321faf1a104e8cdb71cd52db4b4360d5881f You're receiving this email because of your account on salsa.debian.org. ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits