Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | record upstream fix | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | add upstream fix | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | remove two incorrect references | Moritz Muehlenhoff | 2024-03-19 | 2 | -2/+2 | |
| | ||||||
* | CVE-2024-24858 fixed upstream (same commit as CVE-2024-24857) | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | CVE-2024-24857 fixed upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | CVE-2024-23307 fixed upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | CVE-2024-22099 fixed upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | alsa issue fixed | Moritz Muehlenhoff | 2024-03-19 | 1 | -2/+2 | |
| | ||||||
* | scsi issue fixed in sid/upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -2/+2 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-18 | 22 | -0/+351 | |
| | | | | | Fixup for fix in earlier versions as 6.6.15-1 and one N/A as vulnerable code was only introduced in 6.7 series. | |||||
* | Remove CVE-2021-47115 (rejected) | Salvatore Bonaccorso | 2024-03-18 | 1 | -16/+0 | |
| | ||||||
* | Retire some CVEs | Salvatore Bonaccorso | 2024-03-15 | 24 | -0/+0 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-15 | 27 | -0/+430 | |
| | | | | | | | | | | | | | | One source of problem for the automatic processing was the following manual fixup: - detection of N/A in case the version never affected a unstable released version and so the sid: field should be N/A "Vulnerable code not present" - The second manual fixup is where 5.14.6-1 was placed as fixed version for sid, as it should have been 5.10.46-1 as this is before the branching point. There is no such support of tracking branching points yet so it seems to cause fallouts on the recent CVEs assigned by importing the issues from the GSD. | |||||
* | Track fixes in 6.1.82 and 6.7.10 | Salvatore Bonaccorso | 2024-03-15 | 1 | -3/+3 | |
| | ||||||
* | Add reference for ZDI-24-227 | Salvatore Bonaccorso | 2024-03-13 | 1 | -0/+1 | |
| | ||||||
* | Add reference for ZDI-24-228 | Salvatore Bonaccorso | 2024-03-13 | 1 | -0/+1 | |
| | ||||||
* | Add reference for ZDI-24-229 | Salvatore Bonaccorso | 2024-03-13 | 1 | -0/+1 | |
| | ||||||
* | Add new set of CVEs | Salvatore Bonaccorso | 2024-03-13 | 3 | -0/+49 | |
| | | | | | | | | | The script struggles over catching correctly that for CVE-2023-52608 and CVE-2024-26629 the correct sid released version is 6.6.15-1 and not 6.7.7-1. There remains room for improvement as we want to have the manual review needed minimal. | |||||
* | Drop CVE-2024-26609 (rejected) and update note for CVE-2024-1086 | Salvatore Bonaccorso | 2024-03-13 | 2 | -18/+0 | |
| | ||||||
* | Mark CVE-2023-28746 as released in sid | Salvatore Bonaccorso | 2024-03-13 | 1 | -1/+1 | |
| | ||||||
* | Update tracking for CVE-2023-52447 | Salvatore Bonaccorso | 2024-03-13 | 2 | -14/+17 | |
| | ||||||
* | Mark CVE-2023-28746 as pendign in sid | Salvatore Bonaccorso | 2024-03-13 | 1 | -1/+1 | |
| | ||||||
* | Add CVE-2024-2193 | Salvatore Bonaccorso | 2024-03-12 | 1 | -0/+16 | |
| | ||||||
* | Add CVE-2023-28746 | Salvatore Bonaccorso | 2024-03-12 | 1 | -0/+14 | |
| | ||||||
* | Remove CVE-2024-26613 as it was rejected | Salvatore Bonaccorso | 2024-03-12 | 2 | -18/+0 | |
| | ||||||
* | Update status for CVE-2023-6270 | Salvatore Bonaccorso | 2024-03-12 | 1 | -8/+10 | |
| | ||||||
* | Update information for CVE-2024-26589 | Salvatore Bonaccorso | 2024-03-11 | 1 | -3/+5 | |
| | ||||||
* | Remove CVE-2023-52514 | Salvatore Bonaccorso | 2024-03-11 | 1 | -15/+0 | |
| | ||||||
* | Add upstream commit references for CVE-2024-23850 | Salvatore Bonaccorso | 2024-03-11 | 1 | -2/+2 | |
| | ||||||
* | Mark issues pending for buster | Ben Hutchings | 2024-03-11 | 38 | -38/+38 | |
| | ||||||
* | Note some issues that don't seem to have security impact for us | Ben Hutchings | 2024-03-11 | 3 | -0/+4 | |
| | ||||||
* | Note 3 pairs of duplicated CVE IDs | Ben Hutchings | 2024-03-11 | 6 | -0/+6 | |
| | ||||||
* | Mark some more issues as affecting 4.19 | Ben Hutchings | 2024-03-11 | 3 | -8/+8 | |
| | ||||||
* | Note where issues affect unsupported architectures | Ben Hutchings | 2024-03-11 | 6 | -9/+11 | |
| | ||||||
* | Mark CVE-2023-3640 as ignored in all suites | Ben Hutchings | 2024-03-11 | 1 | -8/+8 | |
| | | | | | This issue seems to be a known and unfixable limitation to Meltdown mitigation on x86. | |||||
* | Record various issues as already fixed upstream | Ben Hutchings | 2024-03-11 | 9 | -31/+45 | |
| | ||||||
* | Track fixes included in 6.7.9-1 upload | Salvatore Bonaccorso | 2024-03-08 | 1 | -1/+1 | |
| | ||||||
* | Two CVEs got rejected | Salvatore Bonaccorso | 2024-03-08 | 2 | -33/+0 | |
| | ||||||
* | Remove CVE-2023-52592 (rejected) | Salvatore Bonaccorso | 2024-03-07 | 1 | -15/+0 | |
| | ||||||
* | More information on CVE-2024-26621 | Salvatore Bonaccorso | 2024-03-06 | 1 | -4/+5 | |
| | ||||||
* | Update information for CVE-2024-26621 | Salvatore Bonaccorso | 2024-03-06 | 1 | -3/+3 | |
| | ||||||
* | Track fixes in 6.7.9, 6.6.21, 6.1.81 and 5.10.212 | Salvatore Bonaccorso | 2024-03-06 | 1 | -4/+4 | |
| | ||||||
* | Retire some CVEs | Salvatore Bonaccorso | 2024-03-06 | 3 | -0/+0 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-06 | 31 | -0/+470 | |
| | ||||||
* | Remove CVE-2023-52521 | Salvatore Bonaccorso | 2024-03-06 | 1 | -15/+0 | |
| | ||||||
* | Add two new assigned CVEs | Salvatore Bonaccorso | 2024-03-05 | 2 | -0/+33 | |
| | | | | | | The detection for sid worked not well in both cases and for CVE-2022-48630 needed adjustment to one lower version 5.17.11-1 (from 5.18.2-1) and for CVE-2022-48629 to 5.16.18-1 (from 5.17.3-1). | |||||
* | Retire resolved CVEs | Salvatore Bonaccorso | 2024-03-04 | 23 | -0/+0 | |
| | ||||||
* | Add new batch of assigned CVEs | Salvatore Bonaccorso | 2024-03-04 | 27 | -0/+433 | |
| | ||||||
* | Remove CVE-2023-52579 (rejected, duplicate) | Salvatore Bonaccorso | 2024-03-04 | 1 | -16/+0 | |
| | ||||||
* | Add one assigned CVE | Salvatore Bonaccorso | 2024-03-04 | 1 | -0/+16 | |
| |