Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Add CVE-2020-13645/glib-networking for tracking buster-pu upload | Salvatore Bonaccorso | 2020-07-07 | 1 | -0/+2 | |
| | ||||||
* | Mark CVE-2020-13645/glib-networking as no-dsa | Salvatore Bonaccorso | 2020-07-07 | 1 | -0/+1 | |
| | ||||||
* | Bump version including the fix for CVE-2019-16275/wpa | Salvatore Bonaccorso | 2020-07-07 | 1 | -1/+1 | |
| | | | | | Maintainer apparently uses dgit, which prevents beeing able to do a fixed upload, cf. https://bugs.debian.org/949367#37 | |||||
* | Add CVE-2020-14928/evolution-data-server | Salvatore Bonaccorso | 2020-07-07 | 1 | -0/+3 | |
| | ||||||
* | more xen issues | Moritz Muehlenhoff | 2020-07-07 | 2 | -0/+8 | |
| | ||||||
* | dla-needed: remove roundcube | Emilio Pozuelo Monfort | 2020-07-07 | 3 | -2/+3 | |
| | | | | It will be handled by the maintainer via opu. | |||||
* | first batch of new xen issues | Moritz Muehlenhoff | 2020-07-07 | 1 | -0/+9 | |
| | ||||||
* | Triage CVE-2020-12675, CVE-2020-12691, CVE-2020-12690 and CVE-2020-12689 for ↵ | Chris Lamb | 2020-07-07 | 1 | -0/+4 | |
| | | | | stretch LTS. | |||||
* | data/dla-needed.txt: Triage ceph for stretch LTS. | Chris Lamb | 2020-07-07 | 1 | -0/+3 | |
| | ||||||
* | data/dla-needed.txt: Triage ffmpeg for stretch LTS. | Chris Lamb | 2020-07-07 | 1 | -0/+3 | |
| | ||||||
* | Triage CVE-2020-12284 in ffmpeg in stretch LTS. | Chris Lamb | 2020-07-07 | 1 | -0/+1 | |
| | ||||||
* | data/dla-needed.txt: Triage roundcube for stretch LTS. | Chris Lamb | 2020-07-07 | 1 | -0/+2 | |
| | ||||||
* | data/dla-needed.txt: Claim fwupd. | Chris Lamb | 2020-07-07 | 1 | -1/+1 | |
| | ||||||
* | data/dla-needed.txt: Triage fwupd for stretch LTS. | Chris Lamb | 2020-07-07 | 1 | -0/+2 | |
| | ||||||
* | python n/a | Moritz Muehlenhoff | 2020-07-07 | 1 | -1/+3 | |
| | | | | NFU (concludes external check) | |||||
* | Add CVE-2020-14314/linux | Salvatore Bonaccorso | 2020-07-07 | 1 | -1/+3 | |
| | ||||||
* | Two unimportant lynis issues fixed on source level in 3.0.0-1 via unstable | Salvatore Bonaccorso | 2020-07-07 | 1 | -2/+2 | |
| | ||||||
* | Reserve DLA-2272-1 for jessie-lts | Emilio Pozuelo Monfort | 2020-07-07 | 1 | -0/+2 | |
| | ||||||
* | automatic update | security tracker role | 2020-07-07 | 1 | -22/+25 | |
| | ||||||
* | Claim roundcube | Sébastien Delafond | 2020-07-07 | 1 | -1/+2 | |
| | ||||||
* | Add fixed version for CVE-2019-13990/libquartz-java | Salvatore Bonaccorso | 2020-07-07 | 1 | -1/+1 | |
| | ||||||
* | dla: take nss | Adrian Bunk | 2020-07-07 | 1 | -1/+1 | |
| | ||||||
* | Reserve DSA number for php7.3 update | Salvatore Bonaccorso | 2020-07-06 | 2 | -2/+3 | |
| | ||||||
* | Remove two postponed tags for php7.3 | Salvatore Bonaccorso | 2020-07-06 | 1 | -2/+0 | |
| | ||||||
* | Add CVE-2020-15569/milkytracker | Salvatore Bonaccorso | 2020-07-06 | 1 | -1/+2 | |
| | ||||||
* | Process one NFU | Salvatore Bonaccorso | 2020-07-06 | 1 | -1/+1 | |
| | ||||||
* | Process NFUs | Salvatore Bonaccorso | 2020-07-06 | 1 | -4/+4 | |
| | ||||||
* | automatic update | security tracker role | 2020-07-06 | 1 | -127/+144 | |
| | ||||||
* | claim opendmarc | Thorsten Alteholz | 2020-07-06 | 1 | -1/+1 | |
| | ||||||
* | Add tracking bug for question on CVE-2020-13817/ntpsec | Salvatore Bonaccorso | 2020-07-06 | 1 | -1/+1 | |
| | ||||||
* | Track src:linux update for stretch-pu | Salvatore Bonaccorso | 2020-07-06 | 1 | -0/+22 | |
| | ||||||
* | NFUs, requested rejection of duped teeworlds CVE ID | Moritz Muehlenhoff | 2020-07-06 | 1 | -6/+5 | |
| | ||||||
* | jpeg issue already fixed a few years ago | Moritz Muehlenhoff | 2020-07-06 | 2 | -4/+4 | |
| | | | | take squid | |||||
* | buster triage | Moritz Muehlenhoff | 2020-07-06 | 2 | -2/+13 | |
| | ||||||
* | Mark mariadb-10.3 as no-dsa for buster | Salvatore Bonaccorso | 2020-07-06 | 1 | -0/+5 | |
| | ||||||
* | Add TODO item for CVE-2019-20892 | Salvatore Bonaccorso | 2020-07-06 | 1 | -0/+1 | |
| | | | | | | It has been claimed that the issue does not affect 5.7.3, but this should be proven first. While it is correct that the poc does not trigger the issue, we need to find where the issue has been introduced. | |||||
* | Add extra note for CVE-2019-20892 | Salvatore Bonaccorso | 2020-07-06 | 1 | -0/+2 | |
| | ||||||
* | dla: claim net-snmp | Sylvain Beucler | 2020-07-06 | 1 | -1/+1 | |
| | ||||||
* | dla: add package updates planned by security team before the oldstable->LTS ↵ | Sylvain Beucler | 2020-07-06 | 1 | -0/+9 | |
| | | | | | | switch Cf. deb5b9dbbc3582d46df280607e6700f551dcb7e3 | |||||
* | CVE-2020-15562/roundcube assigned | Salvatore Bonaccorso | 2020-07-06 | 1 | -1/+1 | |
| | ||||||
* | dla: drop apache2, only affects jessie / < 2.4.24 | Sylvain Beucler | 2020-07-06 | 1 | -7/+0 | |
| | ||||||
* | dla: rails: update status | Sylvain Beucler | 2020-07-06 | 1 | -2/+4 | |
| | ||||||
* | fix linux-4.9 entries | Emilio Pozuelo Monfort | 2020-07-06 | 1 | -13/+13 | |
| | | | | | | | Most of these are already fixed in jessie, so having a jessie entry with unfixed is wrong. Rather than marking it as fixed, add the generic entry as removed and let the cross-reference do its job. | |||||
* | Process NFUs | Salvatore Bonaccorso | 2020-07-06 | 1 | -3/+3 | |
| | ||||||
* | automatic update | security tracker role | 2020-07-06 | 1 | -0/+40 | |
| | ||||||
* | semi-automatic unclaim after 2 weeks of inactivity | Holger Levsen | 2020-07-06 | 1 | -1/+1 | |
| | | | | Signed-off-by: Holger Levsen <holger@layer-acht.org> | |||||
* | Mark mariadb-10.1 as no-dsa (will be fixed in point release) | Salvatore Bonaccorso | 2020-07-06 | 1 | -0/+3 | |
| | ||||||
* | mariadb-10.3 fixed in sid | Moritz Muehlenhoff | 2020-07-06 | 1 | -5/+5 | |
| | ||||||
* | Track proposed update for mariadb-10.1 via stretch-pu | Salvatore Bonaccorso | 2020-07-06 | 1 | -0/+6 | |
| | ||||||
* | wireshark postponed | Moritz Muehlenhoff | 2020-07-06 | 1 | -1/+3 | |
| |