Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Add two new assigned CVEs | Salvatore Bonaccorso | 2024-03-27 | 2 | -0/+32 | |
| | ||||||
* | CVE-2024-26624 got rejected | Salvatore Bonaccorso | 2024-03-27 | 1 | -18/+0 | |
| | ||||||
* | Track fixes in 6.7.11, 6.1.83, 5.10.214 and 4.19.311 | Salvatore Bonaccorso | 2024-03-27 | 4 | -15/+17 | |
| | ||||||
* | Add reference for CVE-2024-1086 | Salvatore Bonaccorso | 2024-03-27 | 1 | -0/+1 | |
| | ||||||
* | Retire some CVEs | Salvatore Bonaccorso | 2024-03-26 | 3 | -0/+0 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-26 | 14 | -0/+215 | |
| | ||||||
* | Retire several CVEs | Salvatore Bonaccorso | 2024-03-25 | 37 | -0/+0 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-25 | 41 | -0/+660 | |
| | ||||||
* | Track fixes released in 6.9-rc1 | Salvatore Bonaccorso | 2024-03-24 | 4 | -4/+4 | |
| | ||||||
* | Add new CVEs | Salvatore Bonaccorso | 2024-03-21 | 3 | -0/+48 | |
| | ||||||
* | Two more CVEs rejected | Salvatore Bonaccorso | 2024-03-20 | 2 | -30/+0 | |
| | ||||||
* | Retire some CVEs | Salvatore Bonaccorso | 2024-03-19 | 8 | -0/+0 | |
| | ||||||
* | Some CVEs rejected in Linux Kernel CNA | Salvatore Bonaccorso | 2024-03-19 | 4 | -62/+0 | |
| | ||||||
* | Update status for three CVEs | Salvatore Bonaccorso | 2024-03-19 | 3 | -19/+21 | |
| | ||||||
* | record upstream fix | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | add upstream fix | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | remove two incorrect references | Moritz Muehlenhoff | 2024-03-19 | 2 | -2/+2 | |
| | ||||||
* | CVE-2024-24858 fixed upstream (same commit as CVE-2024-24857) | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | CVE-2024-24857 fixed upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | CVE-2024-23307 fixed upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | CVE-2024-22099 fixed upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -1/+1 | |
| | ||||||
* | alsa issue fixed | Moritz Muehlenhoff | 2024-03-19 | 1 | -2/+2 | |
| | ||||||
* | scsi issue fixed in sid/upstream | Moritz Muehlenhoff | 2024-03-19 | 1 | -2/+2 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-18 | 22 | -0/+351 | |
| | | | | | Fixup for fix in earlier versions as 6.6.15-1 and one N/A as vulnerable code was only introduced in 6.7 series. | |||||
* | Remove CVE-2021-47115 (rejected) | Salvatore Bonaccorso | 2024-03-18 | 1 | -16/+0 | |
| | ||||||
* | Retire some CVEs | Salvatore Bonaccorso | 2024-03-15 | 24 | -0/+0 | |
| | ||||||
* | Add new batch of CVEs | Salvatore Bonaccorso | 2024-03-15 | 27 | -0/+430 | |
| | | | | | | | | | | | | | | One source of problem for the automatic processing was the following manual fixup: - detection of N/A in case the version never affected a unstable released version and so the sid: field should be N/A "Vulnerable code not present" - The second manual fixup is where 5.14.6-1 was placed as fixed version for sid, as it should have been 5.10.46-1 as this is before the branching point. There is no such support of tracking branching points yet so it seems to cause fallouts on the recent CVEs assigned by importing the issues from the GSD. | |||||
* | Track fixes in 6.1.82 and 6.7.10 | Salvatore Bonaccorso | 2024-03-15 | 1 | -3/+3 | |
| | ||||||
* | Add reference for ZDI-24-227 | Salvatore Bonaccorso | 2024-03-13 | 1 | -0/+1 | |
| | ||||||
* | Add reference for ZDI-24-228 | Salvatore Bonaccorso | 2024-03-13 | 1 | -0/+1 | |
| | ||||||
* | Add reference for ZDI-24-229 | Salvatore Bonaccorso | 2024-03-13 | 1 | -0/+1 | |
| | ||||||
* | Add new set of CVEs | Salvatore Bonaccorso | 2024-03-13 | 3 | -0/+49 | |
| | | | | | | | | | The script struggles over catching correctly that for CVE-2023-52608 and CVE-2024-26629 the correct sid released version is 6.6.15-1 and not 6.7.7-1. There remains room for improvement as we want to have the manual review needed minimal. | |||||
* | Drop CVE-2024-26609 (rejected) and update note for CVE-2024-1086 | Salvatore Bonaccorso | 2024-03-13 | 2 | -18/+0 | |
| | ||||||
* | Mark CVE-2023-28746 as released in sid | Salvatore Bonaccorso | 2024-03-13 | 1 | -1/+1 | |
| | ||||||
* | Update tracking for CVE-2023-52447 | Salvatore Bonaccorso | 2024-03-13 | 2 | -14/+17 | |
| | ||||||
* | Mark CVE-2023-28746 as pendign in sid | Salvatore Bonaccorso | 2024-03-13 | 1 | -1/+1 | |
| | ||||||
* | Add CVE-2024-2193 | Salvatore Bonaccorso | 2024-03-12 | 1 | -0/+16 | |
| | ||||||
* | Add CVE-2023-28746 | Salvatore Bonaccorso | 2024-03-12 | 1 | -0/+14 | |
| | ||||||
* | Remove CVE-2024-26613 as it was rejected | Salvatore Bonaccorso | 2024-03-12 | 2 | -18/+0 | |
| | ||||||
* | Update status for CVE-2023-6270 | Salvatore Bonaccorso | 2024-03-12 | 1 | -8/+10 | |
| | ||||||
* | Update information for CVE-2024-26589 | Salvatore Bonaccorso | 2024-03-11 | 1 | -3/+5 | |
| | ||||||
* | Remove CVE-2023-52514 | Salvatore Bonaccorso | 2024-03-11 | 1 | -15/+0 | |
| | ||||||
* | Add upstream commit references for CVE-2024-23850 | Salvatore Bonaccorso | 2024-03-11 | 1 | -2/+2 | |
| | ||||||
* | Mark issues pending for buster | Ben Hutchings | 2024-03-11 | 38 | -38/+38 | |
| | ||||||
* | Note some issues that don't seem to have security impact for us | Ben Hutchings | 2024-03-11 | 3 | -0/+4 | |
| | ||||||
* | Note 3 pairs of duplicated CVE IDs | Ben Hutchings | 2024-03-11 | 6 | -0/+6 | |
| | ||||||
* | Mark some more issues as affecting 4.19 | Ben Hutchings | 2024-03-11 | 3 | -8/+8 | |
| | ||||||
* | Note where issues affect unsupported architectures | Ben Hutchings | 2024-03-11 | 6 | -9/+11 | |
| | ||||||
* | Mark CVE-2023-3640 as ignored in all suites | Ben Hutchings | 2024-03-11 | 1 | -8/+8 | |
| | | | | | This issue seems to be a known and unfixable limitation to Meltdown mitigation on x86. | |||||
* | Record various issues as already fixed upstream | Ben Hutchings | 2024-03-11 | 9 | -31/+45 | |
| |