Author: pere
Date: 2016-12-17 07:49:40 + (Sat, 17 Dec 2016)
New Revision: 47164
Modified:
data/CPE/list
Log:
Updated CPE mapping.
Modified: data/CPE/list
===
--- data/CPE/list 2016-12-17 06:46:02 UTC (rev 47163)
+++ data
Author: carnil
Date: 2016-12-17 06:46:02 + (Sat, 17 Dec 2016)
New Revision: 47163
Modified:
data/CVE/list
Log:
Add bug reference for python-bottle issue, #848392
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-17 0
Author: carnil
Date: 2016-12-17 05:36:40 + (Sat, 17 Dec 2016)
New Revision: 47162
Modified:
data/CVE/list
Log:
Add new python-bottle issue, CVE-2016-9964
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-17 05:36:01
Author: carnil
Date: 2016-12-17 05:36:01 + (Sat, 17 Dec 2016)
New Revision: 47161
Modified:
data/CVE/list
Log:
Remove one TODO
CVE was assigned to graphicsmagick, and imagemagick itself works on this
regard as expected and not a security issue due to the applied security
policy.
CVE-2016-
Author: anarcat
Date: 2016-12-17 01:12:43 + (Sat, 17 Dec 2016)
New Revision: 47160
Modified:
data/dla-needed.txt
Log:
Summary: consider waiting for more issues in graphicsmagick
Modified: data/dla-needed.txt
===
--- data/dla-
Author: anarcat
Date: 2016-12-17 01:10:31 + (Sat, 17 Dec 2016)
New Revision: 47159
Modified:
data/CVE/list
Log:
Summary: details on graphicsmagick CVE
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-17 00:57:36 UT
Author: anarcat
Date: 2016-12-17 00:57:36 + (Sat, 17 Dec 2016)
New Revision: 47158
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-751-1 for nagios3
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-1
Author: pere
Date: 2016-12-17 00:08:23 + (Sat, 17 Dec 2016)
New Revision: 47157
Modified:
data/CPE/aliases
data/CPE/list
Log:
Updated CPE mapping and alias list.
Modified: data/CPE/aliases
===
--- data/CPE/aliases2016-1
Author: pochu
Date: 2016-12-16 23:41:19 + (Fri, 16 Dec 2016)
New Revision: 47156
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-750-1 for game-music-emu
Modified: data/DLA/list
===
--- data/DLA/list 2016
Author: apo
Date: 2016-12-16 22:52:30 + (Fri, 16 Dec 2016)
New Revision: 47155
Modified:
data/dla-needed.txt
Log:
Claim html5lib in dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 22:15:04
Author: anarcat
Date: 2016-12-16 22:15:04 + (Fri, 16 Dec 2016)
New Revision: 47154
Modified:
data/CVE/list
Log:
Summary: clarify nagios' vulnerabilities after my tests
Modified: data/CVE/list
===
--- data/CVE/list 2016-
Author: alteholz
Date: 2016-12-16 21:45:17 + (Fri, 16 Dec 2016)
New Revision: 47151
Modified:
data/dla-needed.txt
Log:
there is more todo
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 21:44:47 UTC (rev 4
Author: alteholz
Date: 2016-12-16 21:44:47 + (Fri, 16 Dec 2016)
New Revision: 47150
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-749-1 for php5
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-16
Author: carnil
Date: 2016-12-16 21:53:53 + (Fri, 16 Dec 2016)
New Revision: 47153
Modified:
data/CVE/list
Log:
Add CVE-2016-5001
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 21:50:30 UTC (rev 47152)
+++ data/
Author: carnil
Date: 2016-12-16 21:50:30 + (Fri, 16 Dec 2016)
New Revision: 47152
Modified:
data/CVE/list
Log:
CVE-2016-7076 fixed in unstable
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 21:45:17 UTC (rev 47
Author: anarcat
Date: 2016-12-16 21:17:39 + (Fri, 16 Dec 2016)
New Revision: 47149
Modified:
data/CVE/list
Log:
Summary: fix title of CVE-2016-7906
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 21:02:50 UTC (
Author: apo
Date: 2016-12-16 21:02:50 + (Fri, 16 Dec 2016)
New Revision: 47148
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-748-1 for libupnp4
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-16 2
Author: carnil
Date: 2016-12-16 20:56:33 + (Fri, 16 Dec 2016)
New Revision: 47147
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA number for php5 update
Modified: data/DSA/list
===
--- data/DSA/list 2016-
Author: carnil
Date: 2016-12-16 20:47:22 + (Fri, 16 Dec 2016)
New Revision: 47146
Modified:
data/CVE/list
Log:
Update status for CVE-2016-6128
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 20:29:23 UTC (rev 47
Author: carnil
Date: 2016-12-16 20:28:57 + (Fri, 16 Dec 2016)
New Revision: 47144
Modified:
data/CVE/list
Log:
Update information for CVE-2016-7568
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 20:24:45 UTC (r
Author: anarcat
Date: 2016-12-16 20:29:23 + (Fri, 16 Dec 2016)
New Revision: 47145
Modified:
data/dla-needed.txt
Log:
Summary: take on (*gulp*) imagemagick
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16
Author: apo
Date: 2016-12-16 20:24:45 + (Fri, 16 Dec 2016)
New Revision: 47143
Modified:
data/dla-needed.txt
Log:
Claim libupnp4 in dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 20:24:02
Author: apo
Date: 2016-12-16 20:24:02 + (Fri, 16 Dec 2016)
New Revision: 47142
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-747-1 for libupnp
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-16 19
Author: carnil
Date: 2016-12-16 19:34:53 + (Fri, 16 Dec 2016)
New Revision: 47141
Modified:
data/CVE/list
Log:
Clarify scope for CVE-2016-9565
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 19:33:34 UTC (rev 47
Author: carnil
Date: 2016-12-16 19:33:34 + (Fri, 16 Dec 2016)
New Revision: 47140
Modified:
data/CVE/list
Log:
Update CVE-2016-9565, remove other source packages
The CVE is specific for the nagios3 issue. The libphp-snoopy issue is
handled via the original CVE-2008-4796 and with CVE-2014-5
Author: apo
Date: 2016-12-16 18:46:15 + (Fri, 16 Dec 2016)
New Revision: 47139
Modified:
data/dla-needed.txt
Log:
Claim libupnp in dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 18:28:39 U
Author: apo
Date: 2016-12-16 18:28:39 + (Fri, 16 Dec 2016)
New Revision: 47138
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-746-1 for tomcat6
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-16 16
Author: benh
Date: 2016-12-16 16:35:55 + (Fri, 16 Dec 2016)
New Revision: 47137
Modified:
data/CVE/list
Log:
Triage CVE-2016-8655
It's much less serious without unprivileged user namespaces enabled,
and that isn't even an option in wheezy.
Modified: data/CVE/list
Author: hertzog
Date: 2016-12-16 14:44:14 + (Fri, 16 Dec 2016)
New Revision: 47136
Modified:
data/dla-needed.txt
Log:
Release nss and libtiff
I fixed the test suite of nss and ran it at build time. No work done on
libtiff.
Modified: data/dla-needed.txt
Author: anarcat
Date: 2016-12-16 14:29:49 + (Fri, 16 Dec 2016)
New Revision: 47135
Modified:
data/dla-needed.txt
Log:
Summary: take on nagios3
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 14:22:25 UTC
Author: anarcat
Date: 2016-12-16 14:22:25 + (Fri, 16 Dec 2016)
New Revision: 47134
Modified:
data/CVE/list
Log:
Summary: from ubuntu: moodle and libphp-snoopy are vulnerable to CVE-2016-9565
Modified: data/CVE/list
===
--- da
Author: fgeek-guest
Date: 2016-12-16 14:16:38 + (Fri, 16 Dec 2016)
New Revision: 47133
Modified:
data/CVE/list
Log:
NFU
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 14:13:09 UTC (rev 47132)
+++ data/CVE/list
Author: apo
Date: 2016-12-16 14:13:09 + (Fri, 16 Dec 2016)
New Revision: 47132
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-745-1 for most
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-16 13:49
Author: apo
Date: 2016-12-16 13:49:38 + (Fri, 16 Dec 2016)
New Revision: 47131
Modified:
data/CVE/list
Log:
CVE-2015-8786,rabbitmq-server: Mark Wheezy as not affected because
the lengths_age or lengths_incr parameters are not present thus the denial of
service attack won't work.
Modifi
Author: apo
Date: 2016-12-16 13:27:58 + (Fri, 16 Dec 2016)
New Revision: 47130
Modified:
data/dla-needed.txt
Log:
Add most to dla-needed.txt and claim it.
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 1
Author: roberto
Date: 2016-12-16 13:01:28 + (Fri, 16 Dec 2016)
New Revision: 47129
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Claim DLA-744-1 for icu
Modified: data/DLA/list
===
--- data/DLA/list 2016-12-16 12:3
Author: seb
Date: 2016-12-16 12:34:25 + (Fri, 16 Dec 2016)
New Revision: 47128
Modified:
data/DSA/list
data/dsa-needed.txt
Log:
Reserve DSA-3736-1 for CVE-2016-6255 and CVE-2016-8863 (libupnp)
Modified: data/DSA/list
===
--
Author: carnil
Date: 2016-12-16 12:33:42 + (Fri, 16 Dec 2016)
New Revision: 47127
Modified:
data/CVE/list
Log:
Add new jasper issue, report+PoC is not accessible right now
Modified: data/CVE/list
===
--- data/CVE/list 20
Author: carnil
Date: 2016-12-16 12:00:46 + (Fri, 16 Dec 2016)
New Revision: 47126
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2016-9920
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 10:57:17 UTC (re
Author: hertzog
Date: 2016-12-16 10:57:17 + (Fri, 16 Dec 2016)
New Revision: 47125
Modified:
data/dla-needed.txt
Log:
Take nss and tiff in dla-needed.txt
Modified: data/dla-needed.txt
===
--- data/dla-needed.txt 2016-12-16 09:
Author: sectracker
Date: 2016-12-16 09:10:13 + (Fri, 16 Dec 2016)
New Revision: 47124
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===
--- data/CVE/list 2016-12-16 06:23:29 UTC (rev 47123)
+++ da
41 matches
Mail list logo
