[Secure-testing-commits] r49169 - data

Author: rbalint Date: 2017-02-24 07:42:20 + (Fri, 24 Feb 2017) New Revision: 49169 Modified: data/dla-needed.txt Log: Claim libreoffice and shadow for DLA Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-02-24 06

[Secure-testing-commits] r49168 - data/CVE

Author: carnil Date: 2017-02-24 06:31:06 + (Fri, 24 Feb 2017) New Revision: 49168 Modified: data/CVE/list Log: CVE-2017-2616: for completeness add coreutils, but see NOTE Modified: data/CVE/list === --- data/CVE/list 201

[Secure-testing-commits] r49167 - data/CVE

Author: carnil Date: 2017-02-24 06:07:52 + (Fri, 24 Feb 2017) New Revision: 49167 Modified: data/CVE/list Log: CVE-2017-584{7,8} fixed in unstable Modified: data/CVE/list === --- data/CVE/list 2017-02-24 05:51:56 UTC (re

[Secure-testing-commits] r49166 - data/CVE

Author: apo Date: 2017-02-24 05:51:56 + (Fri, 24 Feb 2017) New Revision: 49166 Modified: data/CVE/list Log: CVE-2016-4793,cakephp: Add notes and link to patch. Modified: data/CVE/list === --- data/CVE/list 2017-02-24 05

[Secure-testing-commits] r49165 - data

Author: apo Date: 2017-02-24 05:48:40 + (Fri, 24 Feb 2017) New Revision: 49165 Modified: data/dla-needed.txt Log: Claim cakephp in dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-02-24 05:48:03 U

[Secure-testing-commits] r49163 - data/CVE

Author: carnil Date: 2017-02-24 05:41:37 + (Fri, 24 Feb 2017) New Revision: 49163 Modified: data/CVE/list Log: Add fixing version for CVE-2017-2616/shadow Modified: data/CVE/list === --- data/CVE/list 2017-02-24 05:35:53

[Secure-testing-commits] r49159 - data/CVE

Author: carnil Date: 2017-02-24 05:29:11 + (Fri, 24 Feb 2017) New Revision: 49159 Modified: data/CVE/list Log: Do not consider CVE-2014-9892 Modified: data/CVE/list === --- data/CVE/list 2017-02-23 22:18:00 UTC (rev 4915

[Secure-testing-commits] r49161 - data/CVE

Author: carnil Date: 2017-02-24 05:29:37 + (Fri, 24 Feb 2017) New Revision: 49161 Modified: data/CVE/list Log: Sync CVE-2017-5972 with kernel-sec Modified: data/CVE/list === --- data/CVE/list 2017-02-24 05:29:27 UTC (rev

[Secure-testing-commits] r49158 - data/CVE

Author: jmm Date: 2017-02-23 22:18:00 + (Thu, 23 Feb 2017) New Revision: 49158 Modified: data/CVE/list Log: NFUs Modified: data/CVE/list === --- data/CVE/list 2017-02-23 21:10:12 UTC (rev 49157) +++ data/CVE/list

[Secure-testing-commits] r49157 - data/CVE

Author: sectracker Date: 2017-02-23 21:10:12 + (Thu, 23 Feb 2017) New Revision: 49157 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-02-23 20:13:25 UTC (rev 49156) +++ da

[Secure-testing-commits] r49156 - data

Author: carnil Date: 2017-02-23 20:13:25 + (Thu, 23 Feb 2017) New Revision: 49156 Modified: data/dsa-needed.txt Log: Add shadow for dsa-needed, prepared packages Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-0

[Secure-testing-commits] r49155 - data/CVE

Author: carnil Date: 2017-02-23 18:59:08 + (Thu, 23 Feb 2017) New Revision: 49155 Modified: data/CVE/list Log: Add two new virglrenderer issues Modified: data/CVE/list === --- data/CVE/list 2017-02-23 18:32:38 UTC (rev 4

[Secure-testing-commits] r49154 - data

Author: mejo Date: 2017-02-23 18:32:38 + (Thu, 23 Feb 2017) New Revision: 49154 Modified: data/dla-needed.txt Log: update notes for mp3splt in dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-02-23

[Secure-testing-commits] r49153 - data/CVE

Author: carnil Date: 2017-02-23 18:14:51 + (Thu, 23 Feb 2017) New Revision: 49153 Modified: data/CVE/list Log: Add CVE-2017-6214/linux Modified: data/CVE/list === --- data/CVE/list 2017-02-23 18:10:45 UTC (rev 49152) +++

[Secure-testing-commits] r49152 - data

Author: mejo Date: 2017-02-23 18:10:45 + (Thu, 23 Feb 2017) New Revision: 49152 Modified: data/dla-needed.txt Log: Claim munin from data/dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-02-23 16:17

[Secure-testing-commits] r49151 - data/CVE

Author: carnil Date: 2017-02-23 16:17:09 + (Thu, 23 Feb 2017) New Revision: 49151 Modified: data/CVE/list Log: Add bug reference for CVE-2017-2616/shadow Modified: data/CVE/list === --- data/CVE/list 2017-02-23 16:04:24

[Secure-testing-commits] r49150 - data/CVE

Author: carnil Date: 2017-02-23 16:04:24 + (Thu, 23 Feb 2017) New Revision: 49150 Modified: data/CVE/list Log: Reference CVE-2017-2616 patch for shadow Modified: data/CVE/list === --- data/CVE/list 2017-02-23 15:57:50 UT

[Secure-testing-commits] r49149 - data/CVE

Author: carnil Date: 2017-02-23 15:57:50 + (Thu, 23 Feb 2017) New Revision: 49149 Modified: data/CVE/list Log: CVE-2017-2616/shadow update Modified: data/CVE/list === --- data/CVE/list 2017-02-23 15:01:46 UTC (rev 49148)

[Secure-testing-commits] r49148 - data/CVE

Author: agx Date: 2017-02-23 15:01:46 + (Thu, 23 Feb 2017) New Revision: 49148 Modified: data/CVE/list Log: lts: mark several CVEs as no-dsa These are all about missing cleanup on exit functions allowing for the guest to cause OOM. Wheezy's qemu{-kvm} has more many more of these leaks so t

[Secure-testing-commits] r49147 - data/CVE

Author: agx Date: 2017-02-23 14:12:31 + (Thu, 23 Feb 2017) New Revision: 49147 Modified: data/CVE/list Log: lts: mark CVE-2017-5856 as not affecting qemu megasas support was as added past wheezy Modified: data/CVE/list === --

[Secure-testing-commits] r49146 - data/CVE

Author: carnil Date: 2017-02-23 13:53:14 + (Thu, 23 Feb 2017) New Revision: 49146 Modified: data/CVE/list Log: Remove qem-kvm entreies since not-affected and lines doubled Modified: data/CVE/list === --- data/CVE/list 2

[Secure-testing-commits] r49145 - data/CVE

Author: agx Date: 2017-02-23 13:42:10 + (Thu, 23 Feb 2017) New Revision: 49145 Modified: data/CVE/list Log: lts: mark CVE-2017-5667, CVE-2017-5987 as not affecting qemu sdhci support was as added past 1.4.0 Modified: data/CVE/list ==

[Secure-testing-commits] r49143 - data/CVE

Author: agx Date: 2017-02-23 13:40:14 + (Thu, 23 Feb 2017) New Revision: 49143 Modified: data/CVE/list Log: lts: mark CVE-2017-6058 as not affecting qemu Modified: data/CVE/list === --- data/CVE/list 2017-02-23 11:31:43

[Secure-testing-commits] r49144 - data/CVE

Author: agx Date: 2017-02-23 13:40:34 + (Thu, 23 Feb 2017) New Revision: 49144 Modified: data/CVE/list Log: lts: mark CVE-2017-5931 as not affecting qemu there's no virtio-crypto in wheezy Modified: data/CVE/list === --- data

[Secure-testing-commits] r49142 - data

Author: alteholz Date: 2017-02-23 11:31:43 + (Thu, 23 Feb 2017) New Revision: 49142 Modified: data/dla-needed.txt Log: add munin Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-02-23 11:24:25 UTC (rev 49141) +++

[Secure-testing-commits] r49141 - data

Author: carnil Date: 2017-02-23 11:24:25 + (Thu, 23 Feb 2017) New Revision: 49141 Modified: data/dsa-needed.txt Log: Add munin, waiting for testing of the package Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-

[Secure-testing-commits] r49140 - data/CVE

Author: carnil Date: 2017-02-23 10:07:31 + (Thu, 23 Feb 2017) New Revision: 49140 Modified: data/CVE/list Log: Add src:shadow, needs check if it is affected Cf. http://www.openwall.com/lists/oss-security/2017/02/23/6 which indicates that su from src:shadow has the same problem. Modified:

[Secure-testing-commits] r49139 - data/CVE

Author: carnil Date: 2017-02-23 09:30:54 + (Thu, 23 Feb 2017) New Revision: 49139 Modified: data/CVE/list Log: Update four NFUs Modified: data/CVE/list === --- data/CVE/list 2017-02-23 09:10:40 UTC (rev 49138) +++ data/C

[Secure-testing-commits] r49138 - data/CVE

Author: sectracker Date: 2017-02-23 09:10:40 + (Thu, 23 Feb 2017) New Revision: 49138 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-02-23 05:17:52 UTC (rev 49137) +++ da