External check

2016-10-04 Thread Raphael Geissert
CVE-2015-1832: TODO: check CVE-2016-1000: RESERVED CVE-2016-5684: RESERVED CVE-2016-7020: RESERVED -- The output might be a bit terse, but the above ids are known elsewhere, check the references in the tracker. The second part indicates the status of that id in the tracker at the moment the scr

Re: wget CVE-2006-6719 fixed since some years

2016-10-04 Thread Salvatore Bonaccorso
Hi! On Tue, Oct 04, 2016 at 01:40:44PM +0200, Salvatore Bonaccorso wrote: > Hi Noel, > > On Tue, Oct 04, 2016 at 01:25:53PM +0200, Noël Köthe wrote: > > Hello, > > > > https://security-tracker.debian.org/tracker/source-package/wget  > > lists CVE-2006-6719 and I checked if the patch is already i

Re: wget CVE-2006-6719 fixed since some years

2016-10-04 Thread Salvatore Bonaccorso
Hi Noel, On Tue, Oct 04, 2016 at 01:25:53PM +0200, Noël Köthe wrote: > Hello, > > https://security-tracker.debian.org/tracker/source-package/wget  > lists CVE-2006-6719 and I checked if the patch is already included in > the Debian package. > > http://git.savannah.gnu.org/cgit/wget.git/commit/?i

wget CVE-2006-6719 fixed since some years

2016-10-04 Thread Noël Köthe
Hello, https://security-tracker.debian.org/tracker/source-package/wget  lists CVE-2006-6719 and I checked if the patch is already included in the Debian package. http://git.savannah.gnu.org/cgit/wget.git/commit/?id=bd7f4ef701ce5db64659db496d3f47aeedfadac2 is the included upstream patch but not ma

DSA candidates

2016-10-04 Thread Raphael Geissert
asterisk/stable -- bash/stable -- dhcpcd5/stable -- dropbear/stable -- ghostscript/stable -- imagemagick/stable -- kde-runtime/stable -- libgd2/stable -- libspring-java/stable -- libtomcrypt/stable -- libtorrent-rasterbar/stable -- libupnp/stable -- libvpx/stable -- lshell/stable -- mongodb/stable