[Git][security-tracker-team/security-tracker][master] Track fixed version via unstable for CVE-2020-27842/openjpeg2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 219f1a89 by Salvatore Bonaccorso at 2021-03-01T08:28:52+01:00 Track fixed version via unstable for CVE-2020-27842/openjpeg2 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-27843

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a3660637 by Salvatore Bonaccorso at 2021-03-01T08:27:07+01:00 Track fixed version for CVE-2020-27843 Cf. https://github.com/uclouvain/openjpeg/issues/1297#issuecomment-787475666 on why this is

[Git][security-tracker-team/security-tracker][master] Take wpa

Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker Commits: 19ba52ec by Utkarsh Gupta at 2021-03-01T12:21:21+05:30 Take wpa - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt

[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim spip

: 20210228: maintainer doesn't want to work on this update. (utkarsh) NOTE: 20210228: a DSA is already out; check against the patch uploaded. (utkarsh) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/30cd032a5fd385e70c01be4dd4e079cef905d11e -- View

[Git][security-tracker-team/security-tracker][master] triage qemu gsoap wpa for stretch

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: 6a6cea52 by Abhijith PA at 2021-03-01T12:03:14+05:30 triage qemu gsoap wpa for stretch - - - - - 1 changed file: - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Update information on CVE-2019-0222 and associate mqtt-client

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 8c855b86 by Salvatore Bonaccorso at 2021-03-01T06:37:58+01:00 Update information on CVE-2019-0222 and associate mqtt-client activemq upstream included the mqtt-client library in the lib/extra

[Git][security-tracker-team/security-tracker][master] 2 commits: Triage spip for stretch

no response. (roberto) NOTE: 20201220: Upstream has responded. Working with them to backport fixes. (roberto) -- +spip + NOTE: 20210228: maintainer doesn't want to work on this update. (utkarsh) + NOTE: 20210228: a DSA is already out; check against the patch uploaded. (utkarsh) +-- spotweb

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-23336/python3.9 via unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0845da06 by Salvatore Bonaccorso at 2021-02-28T21:52:47+01:00 Track fixed version for CVE-2021-23336/python3.9 via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Track fixed version for two xen issues via unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c5fd8109 by Salvatore Bonaccorso at 2021-02-28T21:44:01+01:00 Track fixed version for two xen issues via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 72c5f5d6 by security tracker role at 2021-02-28T20:10:20+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] update note

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: e6fa8ad0 by Abhijith PA at 2021-03-01T00:31:45+05:30 update note - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-needed.txt

[Git][security-tracker-team/security-tracker][master] thunderbird DSA

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: f6299467 by Moritz Mühlenhoff at 2021-02-28T19:46:10+01:00 thunderbird DSA - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Mark CVE-2016-2568 ignored for bullseye

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0ece4dbd by Salvatore Bonaccorso at 2021-02-28T17:13:42+01:00 Mark CVE-2016-2568 ignored for bullseye - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2016-10127 as no-dsa for bullseye

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6e7e098e by Salvatore Bonaccorso at 2021-02-28T17:03:13+01:00 Mark CVE-2016-10127 as no-dsa for bullseye - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-20206/golang-github-appc-cni via unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0a201c3e by Salvatore Bonaccorso at 2021-02-28T16:51:36+01:00 Add fixed version for CVE-2021-20206/golang-github-appc-cni via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] NFU

Henri Salo pushed to branch master at Debian Security Tracker / security-tracker Commits: c9097fb9 by Henri Salo at 2021-02-28T17:32:07+02:00 NFU - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list =

[Git][security-tracker-team/security-tracker][master] CVE-2021-20201: order commits

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6164ab6b by Salvatore Bonaccorso at 2021-02-28T16:23:53+01:00 CVE-2021-20201: order commits - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20201/spice

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a8544bc8 by Salvatore Bonaccorso at 2021-02-28T16:22:06+01:00 Add Debian bug reference for CVE-2021-20201/spice - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20201/spice as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 04f31426 by Salvatore Bonaccorso at 2021-02-28T16:21:11+01:00 Mark CVE-2021-20201/spice as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3410

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: bb08b20d by Salvatore Bonaccorso at 2021-02-28T13:58:11+01:00 Add Debian bug reference for CVE-2021-3410 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Reference commits for CVE-2021-3410

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 776ec38e by Salvatore Bonaccorso at 2021-02-28T13:51:27+01:00 Reference commits for CVE-2021-3410 - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-3407/mupdf

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 763e9aab by Salvatore Bonaccorso at 2021-02-28T13:37:19+01:00 Add Debian bug reference for CVE-2021-3407/mupdf - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-508{6,7}/xcftools as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a2bdb3f0 by Salvatore Bonaccorso at 2021-02-28T13:35:28+01:00 Mark CVE-2019-508{6,7}/xcftools as no-dsa - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-29509 and track golang-github-russellhaering-gosaml2

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 7bc4cdd8 by Salvatore Bonaccorso at 2021-02-28T13:25:47+01:00 Update information for CVE-2020-29509 and track golang-github-russellhaering-gosaml2 - - - - - 1 changed file: - data/CVE/list

[Git][security-tracker-team/security-tracker][master] 2 commits: Track embedded copies of python-py

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 67ad7255 by Salvatore Bonaccorso at 2021-02-28T11:07:20+01:00 Track embedded copies of python-py - - - - - e605fc53 by Salvatore Bonaccorso at 2021-02-28T11:07:51+01:00 Mark pypy and pypy3 as

[Git][security-tracker-team/security-tracker][master] Mark CVE-2020-29651/python-py as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 691d8f68 by Salvatore Bonaccorso at 2021-02-28T10:59:07+01:00 Mark CVE-2020-29651/python-py as no-dsa - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2020-29651/python-py via unstable

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 3ca5536b by Salvatore Bonaccorso at 2021-02-28T10:48:52+01:00 Track fixed version for CVE-2020-29651/python-py via unstable - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-28491

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 7df1d82a by Salvatore Bonaccorso at 2021-02-28T10:46:36+01:00 Add Debian bug reference for CVE-2020-28491 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-27843

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 4a6ff9b7 by Salvatore Bonaccorso at 2021-02-28T10:45:20+01:00 Add Debian bug reference for CVE-2020-27843 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2020-28491 as no-dsa

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 954766a2 by Salvatore Bonaccorso at 2021-02-28T10:44:29+01:00 Mark CVE-2020-28491 as no-dsa - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add additional reference for CVE-2020-27843

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 9e7d9737 by Salvatore Bonaccorso at 2021-02-28T10:28:25+01:00 Add additional reference for CVE-2020-27843 Note, that while the commit make it avoid the oub of bounds access of the reported

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2021-20206

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 13254b17 by Salvatore Bonaccorso at 2021-02-28T09:40:21+01:00 Add Debian bug reference for CVE-2021-20206 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-20206 as no-dsa for buster

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c4d0cea3 by Salvatore Bonaccorso at 2021-02-28T09:36:05+01:00 Mark CVE-2021-20206 as no-dsa for buster - - - - - 1 changed file: - data/CVE/list Changes: