[Secure-testing-commits] r56082 - in data: . CVE

Author: carnil Date: 2017-09-24 08:00:44 + (Sun, 24 Sep 2017) New Revision: 56082 Modified: data/CVE/list data/dsa-needed.txt Log: Mark db issues as no-dsa Modified: data/CVE/list === --- data/CVE/list 2017-09-24 05:3

[Secure-testing-commits] r56083 - data

Author: carnil Date: 2017-09-24 08:01:46 + (Sun, 24 Sep 2017) New Revision: 56083 Modified: data/next-point-update.txt Log: Add db5.3 for stretch-pu Modified: data/next-point-update.txt === --- data/next-point-update.txt 2017

[Secure-testing-commits] r56084 - data

Author: carnil Date: 2017-09-24 08:09:16 + (Sun, 24 Sep 2017) New Revision: 56084 Modified: data/next-oldstable-point-update.txt Log: Add db5.3 update for jessie-pu Modified: data/next-oldstable-point-update.txt === --- data/n

[Secure-testing-commits] r56085 - data/CVE

Author: sectracker Date: 2017-09-24 09:10:12 + (Sun, 24 Sep 2017) New Revision: 56085 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-09-24 08:09:16 UTC (rev 56084) +++ da

[Secure-testing-commits] r56086 - data

Author: carnil Date: 2017-09-24 09:18:50 + (Sun, 24 Sep 2017) New Revision: 56086 Modified: data/next-oldstable-point-update.txt Log: Add jessie-pu item for src:db Modified: data/next-oldstable-point-update.txt === --- data/ne

[Secure-testing-commits] r56087 - data/CVE

Author: carnil Date: 2017-09-24 09:22:35 + (Sun, 24 Sep 2017) New Revision: 56087 Modified: data/CVE/list Log: Add fixing version for busybox issue, #803097 Modified: data/CVE/list === --- data/CVE/list 2017-09-24 09:18:

[Secure-testing-commits] r56088 - data

Author: pochu Date: 2017-09-24 10:03:30 + (Sun, 24 Sep 2017) New Revision: 56088 Modified: data/dla-needed.txt Log: dla: claim weechat Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-24 09:22:35 UTC (rev 5608

[Secure-testing-commits] r56089 - data

Author: pochu Date: 2017-09-24 10:29:59 + (Sun, 24 Sep 2017) New Revision: 56089 Modified: data/dla-needed.txt Log: dla: claim db* Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-24 10:03:30 UTC (rev 56088) +

[Secure-testing-commits] r56090 - data/CVE

Author: carnil Date: 2017-09-24 10:50:40 + (Sun, 24 Sep 2017) New Revision: 56090 Modified: data/CVE/list Log: Add fixing version for one graphicsmagick issue Modified: data/CVE/list === --- data/CVE/list 2017-09-24 10:2

[Secure-testing-commits] r56091 - data

Author: apo Date: 2017-09-24 14:04:42 + (Sun, 24 Sep 2017) New Revision: 56091 Modified: data/dla-needed.txt Log: Claim tomcat7 in dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-24 10:50:40 U

[Secure-testing-commits] r56092 - in data: . DLA

Author: apo Date: 2017-09-24 15:44:49 + (Sun, 24 Sep 2017) New Revision: 56092 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-1108-1 for tomcat7 Modified: data/DLA/list === --- data/DLA/list 2017-09-24 1

[Secure-testing-commits] r56093 - data/CVE

Author: carnil Date: 2017-09-24 16:02:49 + (Sun, 24 Sep 2017) New Revision: 56093 Modified: data/CVE/list Log: Add bug reference for CVE-2017-2808, #876659 Modified: data/CVE/list === --- data/CVE/list 2017-09-24 15:44:4

[Secure-testing-commits] r56094 - data/CVE

Author: carnil Date: 2017-09-24 16:04:50 + (Sun, 24 Sep 2017) New Revision: 56094 Modified: data/CVE/list Log: Add bug reference for CVE-2017-2807, #876660 Modified: data/CVE/list === --- data/CVE/list 2017-09-24 16:02:4

[Secure-testing-commits] r56095 - data

Author: hle Date: 2017-09-24 16:15:27 + (Sun, 24 Sep 2017) New Revision: 56095 Modified: data/dla-needed.txt Log: Update lame entry in dla-needed. Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-24 16:04:50 U

[Secure-testing-commits] r56096 - data

Author: carnil Date: 2017-09-24 16:34:22 + (Sun, 24 Sep 2017) New Revision: 56096 Modified: data/dsa-needed.txt Log: Add weechat to dsa-needed list Modified: data/dsa-needed.txt === --- data/dsa-needed.txt 2017-09-24 16:15:27

[Secure-testing-commits] r56097 - in data: . DLA

Author: alteholz Date: 2017-09-24 17:13:49 + (Sun, 24 Sep 2017) New Revision: 56097 Modified: data/DLA/list data/dla-needed.txt Log: Reserve DLA-1109-1 for libraw Modified: data/DLA/list === --- data/DLA/list 2017-09-

[Secure-testing-commits] r56098 - data

Author: alteholz Date: 2017-09-24 17:45:28 + (Sun, 24 Sep 2017) New Revision: 56098 Modified: data/dla-needed.txt Log: add libofx Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-24 17:13:49 UTC (rev 56097) ++

[Secure-testing-commits] r56099 - data/CVE

Author: apo Date: 2017-09-24 17:50:22 + (Sun, 24 Sep 2017) New Revision: 56099 Modified: data/CVE/list Log: nvidia-graphics-drivers: end-of-life for Wheezy, non-free is not supported Modified: data/CVE/list === --- data/CVE/l

[Secure-testing-commits] r56100 - data/CVE

Author: apo Date: 2017-09-24 18:32:16 + (Sun, 24 Sep 2017) New Revision: 56100 Modified: data/CVE/list Log: p3scan,CVE-2017-14681: no-dsa for Wheezy Same reasoning as for kannel. Requires a second exploit for the daemon. Low popcon, orphaned package, no sponsor uses it. Modified: data/CV

[Secure-testing-commits] r56101 - data/CVE

Author: apo Date: 2017-09-24 19:08:44 + (Sun, 24 Sep 2017) New Revision: 56101 Modified: data/CVE/list Log: Add bug number for p3scan vulnerability Modified: data/CVE/list === --- data/CVE/list 2017-09-24 18:32:16 UTC (

[Secure-testing-commits] r56102 - data

Author: apo Date: 2017-09-24 20:04:43 + (Sun, 24 Sep 2017) New Revision: 56102 Modified: data/dla-needed.txt Log: Add libsndfile to dla-needed.txt Vulnerable code is present and the issue is reproducible with the reproducer from https://github.com/erikd/libsndfile/issues/317 Modified: da

[Secure-testing-commits] r56103 - data/CVE

Author: apo Date: 2017-09-24 20:31:08 + (Sun, 24 Sep 2017) New Revision: 56103 Modified: data/CVE/list Log: Add bug number for libsndfile issues Modified: data/CVE/list === --- data/CVE/list 2017-09-24 20:04:43 UTC (rev

[Secure-testing-commits] r56104 - data/CVE

Author: sectracker Date: 2017-09-24 21:10:14 + (Sun, 24 Sep 2017) New Revision: 56104 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list === --- data/CVE/list 2017-09-24 20:31:08 UTC (rev 56103) +++ da

[Secure-testing-commits] r56105 - data/CVE

Author: apo Date: 2017-09-24 21:36:42 + (Sun, 24 Sep 2017) New Revision: 56105 Modified: data/CVE/list Log: otrs2,CVE-2017-14635: Add link to possible fixing commit I have investigated all commits between version 5.0.22 and 5.0.23. This one looks like the fix but I'm not totally sure. Mo

[Secure-testing-commits] r56107 - data

Author: apo Date: 2017-09-24 21:44:04 + (Sun, 24 Sep 2017) New Revision: 56107 Modified: data/dla-needed.txt Log: Add otrs2 to dla-needed.txt Modified: data/dla-needed.txt === --- data/dla-needed.txt 2017-09-24 21:43:41 UTC (

[Secure-testing-commits] r56106 - data/CVE

Author: apo Date: 2017-09-24 21:43:41 + (Sun, 24 Sep 2017) New Revision: 56106 Modified: data/CVE/list Log: otrs2,CVE-2017-14635: Add link to possible fix for Wheezy Modified: data/CVE/list === --- data/CVE/list 2017-09

[Secure-testing-commits] r56108 - data/CVE

Author: benh Date: 2017-09-25 01:39:05 + (Mon, 25 Sep 2017) New Revision: 56108 Modified: data/CVE/list Log: CVE-2017-9417 affects and is unfixed in firmware-nonfree Modified: data/CVE/list === --- data/CVE/list 2017-09-

[Secure-testing-commits] r56109 - data/CVE

Author: roberto Date: 2017-09-25 02:28:13 + (Mon, 25 Sep 2017) New Revision: 56109 Modified: data/CVE/list Log: Annotate temporary issue that was addressed by DLA-1081-1 Modified: data/CVE/list === --- data/CVE/list 2017

[Secure-testing-commits] r56111 - data/CVE

Author: roberto Date: 2017-09-25 03:35:02 + (Mon, 25 Sep 2017) New Revision: 56111 Modified: data/CVE/list Log: Note commit that fixes CVE-2017-13758 in ImageMagick6 Modified: data/CVE/list === --- data/CVE/list 2017-09-

[Secure-testing-commits] r56112 - data/CVE

Author: roberto Date: 2017-09-25 03:37:49 + (Mon, 25 Sep 2017) New Revision: 56112 Modified: data/CVE/list Log: Note commit that fixes CVE-2017-13758 in ImageMagick6 Modified: data/CVE/list === --- data/CVE/list 2017-09-

[Secure-testing-commits] r56110 - data/CVE

Author: roberto Date: 2017-09-25 03:29:35 + (Mon, 25 Sep 2017) New Revision: 56110 Modified: data/CVE/list Log: Note that CVE-2017-12876 does not affect imagemagick in wheezy Modified: data/CVE/list === --- data/CVE/list

[Secure-testing-commits] r56113 - data/CVE

Author: carnil Date: 2017-09-25 04:21:11 + (Mon, 25 Sep 2017) New Revision: 56113 Modified: data/CVE/list Log: Order entries Modified: data/CVE/list === --- data/CVE/list 2017-09-25 03:37:49 UTC (rev 56112) +++ data/CVE/

[Secure-testing-commits] r56114 - data/CVE

Author: carnil Date: 2017-09-25 04:30:49 + (Mon, 25 Sep 2017) New Revision: 56114 Modified: data/CVE/list Log: Prefix fixing commits by respective branches Modified: data/CVE/list === --- data/CVE/list 2017-09-25 04:21:1

[Secure-testing-commits] r56116 - data/CVE

Author: carnil Date: 2017-09-25 04:31:24 + (Mon, 25 Sep 2017) New Revision: 56116 Modified: data/CVE/list Log: Workaround missing CVE for issue fixed in DLA-1081-1 Modified: data/CVE/list === --- data/CVE/list 2017-09-25

[Secure-testing-commits] r56117 - data/CVE

Author: carnil Date: 2017-09-25 04:34:53 + (Mon, 25 Sep 2017) New Revision: 56117 Modified: data/CVE/list Log: Annotate correct branch Modified: data/CVE/list === --- data/CVE/list 2017-09-25 04:31:24 UTC (rev 56116) +++

[Secure-testing-commits] r56115 - data/CVE

Author: carnil Date: 2017-09-25 04:31:13 + (Mon, 25 Sep 2017) New Revision: 56115 Modified: data/CVE/list Log: Mark CVE-2017-9417 as no-dsa Modified: data/CVE/list === --- data/CVE/list 2017-09-25 04:30:49 UTC (rev 56114

[Secure-testing-commits] r56118 - data/CVE

Author: carnil Date: 2017-09-25 05:31:22 + (Mon, 25 Sep 2017) New Revision: 56118 Modified: data/CVE/list Log: Add fixed version for pyjwt Modified: data/CVE/list === --- data/CVE/list 2017-09-25 04:34:53 UTC (rev 56117)