[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Update status of libperlspeak-perl.

: = data/dla-needed.txt = @@ -37,7 +37,7 @@ libmtp (Dylan Aïssi) -- libperlspeak-perl (Mike Gabriel) NOTE: 20200326: No patches yet. - NOTE: 20200330: Will request removal from jessie (sunweaver). + NOTE: 20200330: Requested EOL/jessie (sunweaver

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-10595/libpam-krb5

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 88d637bd by Salvatore Bonaccorso at 2020-03-31T05:43:48+02:00 Add CVE-2020-10595/libpam-krb5 - - - - - 1 changed file: - data/CVE/list Changes: = data/

[Git][security-tracker-team/security-tracker][master] Add fixing commit information on CVE-2020-1957/shiro

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f3c9b8a5 by Salvatore Bonaccorso at 2020-03-31T05:34:50+02:00 Add fixing commit information on CVE-2020-1957/shiro - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Correct source package name for CVE-2020-7212

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 2364c423 by Salvatore Bonaccorso at 2020-03-31T05:30:43+02:00 Correct source package name for CVE-2020-7212 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-6817/python-bleach, #955388

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 048d086c by Salvatore Bonaccorso at 2020-03-31T05:23:38+02:00 Add CVE-2020-6817/python-bleach, #955388 - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Mark golang-1.13 as removed from the archive

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: ea2f32e9 by Salvatore Bonaccorso at 2020-03-31T05:21:17+02:00 Mark golang-1.13 as removed from the archive - - - - - 1 changed file: - data/packages/removed-packages Changes:

[Git][security-tracker-team/security-tracker][master] Correct source package name: synfony -> symfony

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 80272cd4 by Salvatore Bonaccorso at 2020-03-31T05:19:46+02:00 Correct source package name: synfony -> symfony - - - - - 1 changed file: - data/CVE/list Changes: ==

[Git][security-tracker-team/security-tracker][master] Document new symfony issues

David Prévot pushed to branch master at Debian Security Tracker / security-tracker Commits: 2228b107 by David Prévot at 2020-03-30T14:05:12-10:00 Document new symfony issues - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list ==

[Git][security-tracker-team/security-tracker][master] Claim netkit-telnet and netkit-telnet-ssl

Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker Commits: 3bb22f9f by Anton Gladky at 2020-03-30T23:49:36+02:00 Claim netkit-telnet and netkit-telnet-ssl - - - - - 1 changed file: - data/dla-needed.txt Changes: = data

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-8835/linux

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: cdeb5191 by Salvatore Bonaccorso at 2020-03-30T23:17:46+02:00 Track fixed version for CVE-2020-8835/linux - - - - - 1 changed file: - data/CVE/list Changes: ==

[Git][security-tracker-team/security-tracker][master] Expand TODO item for CVE-2020-7610

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9e613697 by Salvatore Bonaccorso at 2020-03-30T22:34:50+02:00 Expand TODO item for CVE-2020-7610 - - - - - 1 changed file: - data/CVE/list Changes: = d

[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f1c5201e by Salvatore Bonaccorso at 2020-03-30T22:24:11+02:00 Process NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 654c6ed6 by security tracker role at 2020-03-30T20:10:21+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] dla-needed: add and claim libplist

-needed.txt = @@ -39,6 +39,8 @@ libperlspeak-perl (Mike Gabriel) NOTE: 20200326: No patches yet. NOTE: 20200330: Will request removal from jessie (sunweaver). -- +libplist (Dylan Aïssi) +-- linux (Ben Hutchings) -- linux-4.9 (Ben Hutchings) View it on

[Git][security-tracker-team/security-tracker][master] Add CVE-2020-8835/linux

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 08de20a2 by Salvatore Bonaccorso at 2020-03-30T18:47:25+02:00 Add CVE-2020-8835/linux - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/lis

[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 659fc26d by Moritz Muehlenhoff at 2020-03-30T18:10:32+02:00 NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] yarnpkg fixed in experimental

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 4eb3f25a by Moritz Muehlenhoff at 2020-03-30T17:49:54+02:00 yarnpkg fixed in experimental - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/l

[Git][security-tracker-team/security-tracker][master] Mark CVE-2018-19325 as REJECTED after MITRE confirmation

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: fdff42fc by Salvatore Bonaccorso at 2020-03-30T17:23:46+02:00 Mark CVE-2018-19325 as REJECTED after MITRE confirmation - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: re-claim qtbase-opensource-src.

. (daissi) -- -libperlspeak-perl +libperlspeak-perl (Mike Gabriel) NOTE: 20200326: No patches yet. + NOTE: 20200330: Will request removal from jessie (sunweaver). -- linux (Ben Hutchings) -- @@ -67,7 +68,7 @@ opendmarc (Thorsten Alteholz) -- otrs2 (Abhijith PA) -- -qtbase-opensource-src

[Git][security-tracker-team/security-tracker][master] Reclaim squid3 and claim tomcat8 in dla-needed.txt

Koschany) + NOTE: 20200330: There is still an issue with CVE-2019-12523 but the rest + NOTE: looks good now. (apo) +-- +tomcat8 (Markus Koschany) + NOTE: I am reviewing a patch for Abhijith currently. -- wireshark (Thorsten Alteholz) -- View it on GitLab: https://salsa.debian.org/security

[Git][security-tracker-team/security-tracker][master] dla: reclaim bluez

/dla-needed.txt = @@ -13,7 +13,8 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues ansible NOTE: 20200219: no upstream fixes yet -- -bluez +bluez (Emilio) + NOTE: 20200330: wip -- graphicsmagick (Roberto C. Sánchez) -- View it on

[Git][security-tracker-team/security-tracker][master] CVE-2020-1752/glibc no-dsa on jessie

Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker Commits: 9bdd17a9 by Emilio Pozuelo Monfort at 2020-03-30T11:37:26+02:00 CVE-2020-1752/glibc no-dsa on jessie - - - - - 2 changed files: - data/CVE/list - data/dla-needed.txt Changes: ==

[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity

Holger Levsen pushed to branch master at Debian Security Tracker / security-tracker Commits: 9f667204 by Holger Levsen at 2020-03-30T11:17:24+02:00 semi-automatic unclaim after 2 weeks of inactivity Signed-off-by: Holger Levsen - - - - - 1 changed file: - data/dla-

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 46cadb78 by security tracker role at 2020-03-30T08:10:15+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list