summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Mark CVE-2023-3640 as ignored in all suitesBen Hutchings2024-03-111-8/+8
| | | | | This issue seems to be a known and unfixable limitation to Meltdown mitigation on x86.
* Record various issues as already fixed upstreamBen Hutchings2024-03-119-31/+45
|
* Track fixes included in 6.7.9-1 uploadSalvatore Bonaccorso2024-03-081-1/+1
|
* Two CVEs got rejectedSalvatore Bonaccorso2024-03-082-33/+0
|
* Remove CVE-2023-52592 (rejected)Salvatore Bonaccorso2024-03-071-15/+0
|
* More information on CVE-2024-26621Salvatore Bonaccorso2024-03-061-4/+5
|
* Update information for CVE-2024-26621Salvatore Bonaccorso2024-03-061-3/+3
|
* Track fixes in 6.7.9, 6.6.21, 6.1.81 and 5.10.212Salvatore Bonaccorso2024-03-061-4/+4
|
* Retire some CVEsSalvatore Bonaccorso2024-03-063-0/+0
|
* Add new batch of CVEsSalvatore Bonaccorso2024-03-0631-0/+470
|
* Remove CVE-2023-52521Salvatore Bonaccorso2024-03-061-15/+0
|
* Add two new assigned CVEsSalvatore Bonaccorso2024-03-052-0/+33
| | | | | | The detection for sid worked not well in both cases and for CVE-2022-48630 needed adjustment to one lower version 5.17.11-1 (from 5.18.2-1) and for CVE-2022-48629 to 5.16.18-1 (from 5.17.3-1).
* Retire resolved CVEsSalvatore Bonaccorso2024-03-0423-0/+0
|
* Add new batch of assigned CVEsSalvatore Bonaccorso2024-03-0427-0/+433
|
* Remove CVE-2023-52579 (rejected, duplicate)Salvatore Bonaccorso2024-03-041-16/+0
|
* Add one assigned CVESalvatore Bonaccorso2024-03-041-0/+16
|
* Manual fixup of note section for CVE-2023-52562Salvatore Bonaccorso2024-03-031-3/+3
| | | | Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* Remove one rejected CVESalvatore Bonaccorso2024-03-031-16/+0
|
* Retire several CVEsSalvatore Bonaccorso2024-03-0343-0/+0
|
* Add new batch of CVEsSalvatore Bonaccorso2024-03-0361-0/+973
|
* Track fixes in 6.7.7-1 upload to unstableSalvatore Bonaccorso2024-03-0215-36/+44
|
* Retire CVEsSalvatore Bonaccorso2024-03-0124-0/+0
|
* Add new assigned CVEsSalvatore Bonaccorso2024-03-0113-0/+208
| | | | | | | | | | Key issue remaining is yet to find the correct version in unstable due to branching for a release. Up to now the script will otherwise mark 5.10.40-1 as fixed in the bullseye branch, which is not correct as this was before the branching point and at same point mark an experimental version for the fix in sid. The rest seems to work reasonable now but will need a review later.
* Update CVEs after 5.10.211, 6.1.80, 6.6.19 and 6.7.7 releaseSalvatore Bonaccorso2024-03-014-9/+15
|
* Add more CVEs as assignedSalvatore Bonaccorso2024-03-0115-0/+244
|
* Add three more CVEsSalvatore Bonaccorso2024-02-293-0/+50
|
* Retire CVEsSalvatore Bonaccorso2024-02-2911-0/+0
|
* Add new batch of CVEs from Kernel vulns repositorySalvatore Bonaccorso2024-02-2928-0/+449
|
* Retire CVEsSalvatore Bonaccorso2024-02-2976-0/+0
|
* Add new batch of CVEsSalvatore Bonaccorso2024-02-2910-0/+151
| | | | | | | This import required only one manual fixup to mark the 6.6-upstream-stable as N/A. Peer review taking just some random CVEs to review would be welcome.
* Add batch of CVEsSalvatore Bonaccorso2024-02-2886-0/+1392
|
* Update with improved versionSalvatore Bonaccorso2024-02-281-0/+3
|
* Retire some CVEsSalvatore Bonaccorso2024-02-286-48/+0
|
* Add batch of CVEsSalvatore Bonaccorso2024-02-286-0/+96
|
* Retire several CVEsSalvatore Bonaccorso2024-02-2834-0/+0
|
* Add CVE-2021-4695{6,7,8}Salvatore Bonaccorso2024-02-273-0/+48
|
* Add batch of CVEs from linux-cve-announceSalvatore Bonaccorso2024-02-2733-0/+535
|
* Retire CVEs fixed everywhereSalvatore Bonaccorso2024-02-2728-0/+0
|
* Fix typo in N/A reasonSalvatore Bonaccorso2024-02-271-5/+5
|
* Add batch of Linux CVEsSalvatore Bonaccorso2024-02-2723-0/+366
| | | | | | | There are still manual fixups for the unstable versions and to mark upper versions as N/A "Fixed before branching point" but at this point for stable series detection of fixed version in a -security branch should mostly work (famous last words ...)
* Add batch of Linux CVEsSalvatore Bonaccorso2024-02-278-0/+131
|
* Remove CVE-2019-25161Salvatore Bonaccorso2024-02-271-15/+0
|
* Retire CVEs covered in all supported branchesSalvatore Bonaccorso2024-02-264-0/+0
|
* Add some CVEsSalvatore Bonaccorso2024-02-266-0/+95
|
* Add CVE-2024-26606Salvatore Bonaccorso2024-02-261-0/+16
|
* Update CVE-2024-26602 as released in 6.8-rc6Salvatore Bonaccorso2024-02-261-1/+1
|
* Fix another fallout for version determinationSalvatore Bonaccorso2024-02-251-2/+2
|
* Retire all recent assigned CVEs already fixed everywhereSalvatore Bonaccorso2024-02-253-0/+0
|
* Add batch of Linux CVEsSalvatore Bonaccorso2024-02-253-0/+47
| | | | | | | | This round did not work very well with some automatism added. In particular it showed that commits with no Fixes tag and when it was fixed in a relatively old/ancient version already but backported in very vew stable series (e.g. only in 4.19.y still relevant) then it fails. More work is required but gives another set of CVEs to handle.
* Retire some CVEsSalvatore Bonaccorso2024-02-257-0/+0
|

© 2014-2024 Faster IT GmbH | imprint | privacy policy