[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2021-357{0,1}/linuxptp

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: eb4c4684 by Salvatore Bonaccorso at 2021-07-05T22:08:05+02:00 Add CVE-2021-357{0,1}/linuxptp - - - - - 86500dc7 by Salvatore Bonaccorso at 2021-07-06T07:55:34+02:00 Merge branch '2021-07-05-lin

[Git][security-tracker-team/security-tracker][master] Add some tracking notes for CVE-2021-35331

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3ea13498 by Salvatore Bonaccorso at 2021-07-05T22:41:22+02:00 Add some tracking notes for CVE-2021-35331 The issue itself is disputed in its (security) significance and was marked already disup

[Git][security-tracker-team/security-tracker][master] buster triage

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 1f0457df by Moritz Muehlenhoff at 2021-07-05T22:34:06+02:00 buster triage - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: = dat

[Git][security-tracker-team/security-tracker][master] Process two NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d9b8d1ba by Salvatore Bonaccorso at 2021-07-05T22:14:26+02:00 Process two NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 41639c14 by security tracker role at 2021-07-05T20:10:23+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-35525 as no-dsa for buster

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4b499db5 by Salvatore Bonaccorso at 2021-07-05T21:48:52+02:00 Mark CVE-2021-35525 as no-dsa for buster - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] PHP, libuv1 DSAs

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: fba6a85d by Moritz Mühlenhoff at 2021-07-05T20:20:47+02:00 PHP, libuv1 DSAs - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: = d

[Git][security-tracker-team/security-tracker][master] buster triage

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 05391524 by Moritz Muehlenhoff at 2021-07-05T18:31:54+02:00 buster triage - - - - - 3 changed files: - data/CVE/list - data/DSA/list - data/dsa-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Reserve DLA-2704-1 for libxstream-java

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker Commits: f0b08488 by Sylvain Beucler at 2021-07-05T17:38:01+02:00 Reserve DLA-2704-1 for libxstream-java - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: ==

[Git][security-tracker-team/security-tracker][master] Reclaim rabbitmq-server

= @@ -87,7 +87,8 @@ python-babel NOTE: 20210620: http://people.debian.org/~abhijith/backport_of_3a700b5.patch (abhijith) NOTE: 20210620: Revisit when it have an assigned CVE Id. (abhijith) -- -rabbitmq-server +rabbitmq-server (Abhijith PA) + NOTE: 20210705

[Git][security-tracker-team/security-tracker][master] new ckeditor issue

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 5e30f246 by Moritz Muehlenhoff at 2021-07-05T15:51:39+02:00 new ckeditor issue json-smart non issue - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Order the entries correctly

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: e270b33a by Markus Koschany at 2021-07-05T14:56:59+02:00 Order the entries correctly - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

Processing 7f1998059b6c1f200bbeacf4d80612c0e4a5e7bc failed

The error message was: data/CVE/list:18834: release notes not ordered properly make: *** [Makefile:19: all] Error 1 ___ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/

[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-28163 and CVE-2021-28164,jetty9 as not affected for Buster.

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 7f199805 by Markus Koschany at 2021-07-05T14:48:37+02:00 Mark CVE-2021-28163 and CVE-2021-28164,jetty9 as not affected for Buster. The vulnerable code was introduced later. - - - - - 1 changed fi

[Git][security-tracker-team/security-tracker][master] Ignore CVE-2019-17567/apache2 for buster

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: e9c590ac by Salvatore Bonaccorso at 2021-07-05T14:44:56+02:00 Ignore CVE-2019-17567/apache2 for buster - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] CVE-2019-17567/apache2 fixed in unstable with 2.4.48-2 upload

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6808e3d2 by Salvatore Bonaccorso at 2021-07-05T14:20:52+02:00 CVE-2019-17567/apache2 fixed in unstable with 2.4.48-2 upload - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3631/libvirt

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 01541ffa by Salvatore Bonaccorso at 2021-07-05T14:00:57+02:00 Add Debian bug reference for CVE-2021-3631/libvirt - - - - - 1 changed file: - data/CVE/list Changes: ===

[Git][security-tracker-team/security-tracker][master] ndpi is actually not-affected in stretch LTS

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: a6796123 by Chris Lamb at 2021-07-05T12:13:45+01:00 ndpi is actually not-affected in stretch LTS (I was inside a sid chroot, not my stretch one.) - - - - - 2 changed files: - data/CVE/list - data/dla-

[Git][security-tracker-team/security-tracker][master] Revert "Reserve DLA-2704-1 for ndpi"

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 537a7ca3 by Chris Lamb at 2021-07-05T12:11:59+01:00 Revert "Reserve DLA-2704-1 for ndpi" This reverts commit 40cbecccd832ada6aa371ea3e0d8ee4af27953f7. - - - - - 2 changed files: - data/DLA/list - data

[Git][security-tracker-team/security-tracker][master] Reserve DLA-2704-1 for ndpi

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 40cbeccc by Chris Lamb at 2021-07-05T12:10:06+01:00 Reserve DLA-2704-1 for ndpi - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: = data/D

[Git][security-tracker-team/security-tracker][master] 6 commits: Triage CVE-2021-35942 in glibc for stretch LTS.

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 6f86e50f by Chris Lamb at 2021-07-05T09:36:01+01:00 Triage CVE-2021-35942 in glibc for stretch LTS. - - - - - 8d99b99f by Chris Lamb at 2021-07-05T09:37:44+01:00 Triage CVE-2021-3631 in libvirt for stretc

[Git][security-tracker-team/security-tracker][master] 2 commits: data/dla-needed.txt: Triage ndpi for stretch LTS (CVE-2021-36082)

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: a8b71d2c by Chris Lamb at 2021-07-05T09:35:23+01:00 data/dla-needed.txt: Triage ndpi for stretch LTS (CVE-2021-36082) - - - - - a1313543 by Chris Lamb at 2021-07-05T09:35:33+01:00 data/dla-needed.txt: Cla

[Git][security-tracker-team/security-tracker][master] Triage CVE-2021-22918 in libuv1 for stretch LTS.

Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker Commits: 2a6868ae by Chris Lamb at 2021-07-05T09:33:50+01:00 Triage CVE-2021-22918 in libuv1 for stretch LTS. - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE

[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity

Holger Levsen pushed to branch master at Debian Security Tracker / security-tracker Commits: ee1691c4 by Holger Levsen at 2021-07-05T09:44:05+02:00 semi-automatic unclaim after 2 weeks of inactivity Signed-off-by: Holger Levsen - - - - - 1 changed file: - data/dla-

[Git][security-tracker-team/security-tracker][master] Add upstream tag information for CVE-2021-3631/libvirt

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: cf0552bc by Salvatore Bonaccorso at 2021-07-05T09:07:45+02:00 Add upstream tag information for CVE-2021-3631/libvirt - - - - - 1 changed file: - data/CVE/list Changes: ===

[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-3631 as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 164096c2 by Salvatore Bonaccorso at 2021-07-05T09:06:46+02:00 Mark CVE-2021-3631 as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: = data/CV

[Git][security-tracker-team/security-tracker][master] Add CVE-2021-3631/libvirt

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3afeca0d by Salvatore Bonaccorso at 2021-07-05T09:04:25+02:00 Add CVE-2021-3631/libvirt - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/l