Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fb783532 by Salvatore Bonaccorso at 2018-04-20T08:29:54+02:00
Remove CVE-2018-9306
Further analysis has shown that this was a reservation duplicate of
CVE-2017-17724.
- - - - -
1 changed file:
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cf080ca5 by Salvatore Bonaccorso at 2018-04-20T05:28:44+02:00
Two mruby issues fixed in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
dat
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2fe7df10 by Salvatore Bonaccorso at 2018-04-20T05:19:54+02:00
CVE-2018-9846: Record fixes for release-1.2 branch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
x27;m still investigating the issue before I mark them not-affected.
+ NOTE: 20180419: CVE-2018-8905 not reproducible in Wheezy/Jessie/Stretch
(Buster only),
+ NOTE: but affected code seems to be present. I'm investigating the issue and
will try
+ NOTE: to submit a patch asap. Please re
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
368c2fa7 by Salvatore Bonaccorso at 2018-04-20T04:55:44+02:00
Add ghostscript to dsa-needed list
- - - - -
1 changed file:
- data/dsa-needed.txt
Changes:
===
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
40dba3e2 by Salvatore Bonaccorso at 2018-04-19T23:42:11+02:00
Reference fix for CVE-2016-10317
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6c98bb3e by Salvatore Bonaccorso at 2018-04-19T23:11:59+02:00
Add note for CVE-2018-10186
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/l
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
acc2a4c8 by Markus Koschany at 2018-04-19T23:09:48+02:00
Add bug number for CVE-2018-1088
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
-needed.txt
=
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -37,6 +37,10 @@ gcc-4.9 (Roberto C. Sánchez, Ben Hutchings)
--
ghostscript (Markus Koschany)
--
+glusterfs
+ NOTE: 20180419: Maintainer not contacted yet because issue is too new. Patch
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
25b0e35c by Markus Koschany at 2018-04-19T23:04:37+02:00
CVE-2018-1088,glusterfs: reference upstream fixes.
- - - - -
1 changed file:
- data/CVE/list
Changes:
===
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e405f81c by Emilio Pozuelo Monfort at 2018-04-19T23:00:14+02:00
Reserve DLA-1356-1 for libreoffice
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
==
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74e33f75 by Markus Koschany at 2018-04-19T22:53:40+02:00
Claim ghostscript in dla-needed.txt
- - - - -
1d2d8c24 by Markus Koschany at 2018-04-19T22:54:03+02:00
Merge branch 'master' of
salsa.debian.o
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a938835a by Salvatore Bonaccorso at 2018-04-19T22:38:27+02:00
Add CVE-2018-10188/phpmyadmin
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
80cfa868 by Salvatore Bonaccorso at 2018-04-19T22:28:15+02:00
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
86ca1ccf by Salvatore Bonaccorso at 2018-04-19T22:22:13+02:00
Add CVE-2017-18261
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c2e1616e by security tracker role at 2018-04-19T20:10:27+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
==
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6c7032c4 by Salvatore Bonaccorso at 2018-04-19T21:31:07+02:00
Correct reference for CVE-2017-2825
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
da
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3f842d38 by Moritz Muehlenhoff at 2018-04-19T21:12:34+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
19345e85 by Salvatore Bonaccorso at 2018-04-19T21:09:08+02:00
Update information for CVE-2017-2826
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
d
-needed.txt
=
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -12,6 +12,10 @@
https://wiki.debian.org/LTS/Development#Triage_new_security_issues
--
apache2 (Roberto C. Sánchez)
--
+cacti
+ NOTE: 20180419: Only few commits apply to the Wheezy version so
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3b32a55c by Salvatore Bonaccorso at 2018-04-19T20:47:49+02:00
virtualbox 5.2.10 adressing CVEs from April Oracle CPU
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7c311680 by Salvatore Bonaccorso at 2018-04-19T20:28:20+02:00
Move end-of-life tagged entry to suite entry
- - - - -
1 changed file:
- data/CVE/list
Changes:
===
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b39e6336 by Markus Koschany at 2018-04-19T20:00:19+02:00
CVE-2014-5313,movabletype-opensource: end-of-life
- - - - -
1 changed file:
- data/CVE/list
Changes:
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5fd57673 by Moritz Muehlenhoff at 2018-04-19T19:51:22+02:00
one imagemagick issue ignored
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/lis
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5dfec1c1 by Emilio Pozuelo Monfort at 2018-04-19T19:25:46+02:00
Reserve DLA-1355-1 for mysql-5.5
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
77923317 by Markus Koschany at 2018-04-19T19:01:48+02:00
CVE-2018-10187,CVE-2018-10186,radare2: Mark as no-dsa for Wheezy.
Upstream states that CVE-2018-10186 is not exploitable.
The POC for CVE-2018-
Antoine Beaupré pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0fe600f5 by Antoine Beaupré at 2018-04-19T12:26:31-04:00
Revert "clarify the issue behind CVE-2017-11735"
This reverts commit dc5a98f626764df406a09082ed38bed73ced4bbd.
We shouldn't add notes on rejec
Antoine Beaupré pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dc5a98f6 by Antoine Beaupré at 2018-04-19T12:18:07-04:00
clarify the issue behind CVE-2017-11735
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE
Antoine Beaupré pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9946bf2e by Antoine Beaupré at 2018-04-19T11:11:15-04:00
claim libvorbis
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
==
Antoine Beaupré pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ba365455 by Antoine Beaupré at 2018-04-19T11:10:10-04:00
postpone CVE-2017-14160 in LTS
This issue seem to have clogged the pipeline in LTS as the comment in
dla-needed seemed indicate there was no cl
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5bc6c217 by Chris Lamb at 2018-04-19T16:25:59+02:00
Despite debian-lts being in the CC, a mail was not archived for some reason.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
==
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bab9a53a by Salvatore Bonaccorso at 2018-04-19T16:23:45+02:00
Add fixed versions from 4.15.17-upload
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c7ff143e by Salvatore Bonaccorso at 2018-04-19T12:46:57+02:00
Record fixes for CVE-2018-1018{6,7}
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
da
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e788dee4 by Moritz Muehlenhoff at 2018-04-19T12:27:05+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6fbae08b by Moritz Muehlenhoff at 2018-04-19T12:21:12+02:00
new kodi issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4bd2248f by Moritz Muehlenhoff at 2018-04-19T12:17:42+02:00
new radare2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c396ed77 by Salvatore Bonaccorso at 2018-04-19T12:12:15+02:00
Fix small typo
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
=
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bb11c0b5 by Moritz Muehlenhoff at 2018-04-19T11:52:00+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3fe3322d by Moritz Muehlenhoff at 2018-04-19T11:44:30+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
92a23537 by Moritz Muehlenhoff at 2018-04-19T11:40:41+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
06cb5872 by Moritz Muehlenhoff at 2018-04-19T11:07:23+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
===
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c3fbfcff by security tracker role at 2018-04-19T08:10:34+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE/list
==
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6f955b73 by Salvatore Bonaccorso at 2018-04-19T09:52:24+02:00
Add bug reference for CVE-2018-10194
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
d
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1633c0ac by Salvatore Bonaccorso at 2018-04-19T09:50:25+02:00
Add fixing version for CVE-2018-10119
- - - - -
6feb2bfb by Salvatore Bonaccorso at 2018-04-19T09:51:16+02:00
Add fixing version for
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dc7b19a4 by Emilio Pozuelo Monfort at 2018-04-19T09:44:03+02:00
CVE-2018-0737/openssl: postponed on wheezy
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
596efb57 by Moritz Muehlenhoff at 2018-04-19T09:40:54+02:00
add libreoffice upstream advisories
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/C
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
48bd6ce2 by Salvatore Bonaccorso at 2018-04-19T09:33:54+02:00
Add CVE-2018-10194/ghostscript
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CV
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fc955868 by Salvatore Bonaccorso at 2018-04-19T09:04:42+02:00
Add roundcube to dsa-needed list
- - - - -
1 changed file:
- data/dsa-needed.txt
Changes:
=
48 matches
Mail list logo