summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Improve error handling in grab-cve-in-fixgrabcvefixNeil Williams2022-01-271-5/+36
| | | | | | Catch and report on possible typos in changes entries to better support maintainers pre-checking the d.changelog entries before upload - as long as the .changes file is signed.
* Pylint updatesNeil Williams2022-01-272-97/+60
| | | | Extend linelength to 120 in black.
* Update grab-cve-in-fix for known examplesNeil Williams2022-01-273-26/+180
| | | | | | | | | | Support catching errors in the d.changelog Add support for forcing a specific version Fix typo in new support in bin/merge-cve-files Update support in update-vuln to insert new PackageAnnotations in specific order.
* Add remaining support and switch to using loggingNeil Williams2022-01-271-21/+146
| | | | | | Add support to add a bug number. Add warnings in --help that each update must be merged before the same CVE can be updated again.
* Add support for merging NOTE: StringAnnotationsNeil Williams2022-01-271-1/+46
|
* Add support for --input accepting email text on STDINNeil Williams2022-01-271-27/+78
|
* Add initial update-vuln scriptNeil Williams2022-01-271-0/+182
|
* grab-cve-in-fix #1001451Neil Williams2022-01-271-0/+279
| | | | Add a tool to ease processing of new uploads which fix CVEs
* Process more NFUsSalvatore Bonaccorso2022-01-271-4/+4
|
* automatic updatesecurity tracker role2022-01-272-24/+284
|
* Add CVE-2021-22570/protobufSalvatore Bonaccorso2022-01-271-1/+4
|
* Add CVE-2022-21715/codeigniterSalvatore Bonaccorso2022-01-271-1/+1
|
* Process some NFUsSalvatore Bonaccorso2022-01-272-31/+31
|
* Reference upstream commit for CVE-2022-22844/tiffSalvatore Bonaccorso2022-01-271-0/+1
|
* Track fixed verison via unstable for CVE-2022-22844/tiffSalvatore Bonaccorso2022-01-271-1/+1
|
* Process NFUsSalvatore Bonaccorso2022-01-262-22/+22
|
* Unify naming of ShowDoc NFUSalvatore Bonaccorso2022-01-262-14/+14
|
* Add CVE-2022-0359/vimSalvatore Bonaccorso2022-01-261-1/+5
|
* Add CVE-2022-0361/vimSalvatore Bonaccorso2022-01-261-1/+5
|
* Add CVE-2022-0368/vimSalvatore Bonaccorso2022-01-261-1/+5
|
* Proces some NFUsSalvatore Bonaccorso2022-01-262-5/+5
|
* Add CVE-2022-23990/expatSalvatore Bonaccorso2022-01-261-1/+2
|
* CVE-2022-23132/zabbix: precisionSylvain Beucler2022-01-261-1/+1
|
* CVE-2022-23132/zabbix: stretch not-affectedSylvain Beucler2022-01-261-0/+1
|
* Process some NFUsSalvatore Bonaccorso2022-01-261-3/+3
|
* Add CVE-2021-22600/linuxSalvatore Bonaccorso2022-01-261-1/+4
|
* automatic updatesecurity tracker role2022-01-264-67/+155
|
* List CVE-2021-46141 for DLA 2883-2Salvatore Bonaccorso2022-01-261-0/+1
| | | | | | Rationale: it's not a functional regression here, but the respective security fix to address CVE-2021-46141 was incomplete. So we list the CVE here again.
* Reserve DSA number for uriparser updateSalvatore Bonaccorso2022-01-262-2/+4
|
* Reserve DLA-2883-2 for uriparserChris Lamb2022-01-262-3/+2
|
* data/dla-needed.txt: Triage uriparser for stretch LTS (CVE-2021-46141)Chris Lamb2022-01-261-0/+3
|
* data/dla-needed.txt: Correct orderingChris Lamb2022-01-261-2/+2
|
* Track fixed version via unstable for CVE-2021-45079/strongswanSalvatore Bonaccorso2022-01-261-1/+1
|
* node-cached-path-relative fixed in sidMoritz Muehlenhoff2022-01-261-1/+1
|
* Process some NFUsNeil Williams2022-01-261-8/+8
|
* buster/bullseye triageMoritz Muehlenhoff2022-01-263-1/+17
| | | | remove node-matrix-js-sdk for CVE-2021-44538, seems unrelated
* CVE-2021-26247/cactiNeil Williams2022-01-261-1/+4
| | | | Upstream included this fix in the same issue & commit for CVE-2021-3816
* Process 1 NFUNeil Williams2022-01-261-1/+1
|
* Add CVE-2022-0351/vimSalvatore Bonaccorso2022-01-261-1/+5
|
* Add CVE-2022-0338/loguruSalvatore Bonaccorso2022-01-261-1/+4
| | | | | | I'm marking this as unimportant as the action taken by upstream seems to be to clarify the documentation with respect to security considerations to be taken and documenting best practices.
* Add CVE-2021-45343/librecadSalvatore Bonaccorso2022-01-261-1/+4
|
* Add CVE-2021-45342/librecadSalvatore Bonaccorso2022-01-261-1/+4
|
* Add Debian bug reference for CVE-2021-45340/libsixelSalvatore Bonaccorso2022-01-261-1/+1
|
* Add CVE-2021-45341/librecadSalvatore Bonaccorso2022-01-261-1/+4
|
* Add CVE-2021-3850 for libphp-adodbNeil Williams2022-01-261-1/+3
|
* Add CVE-2021-45340/libsixelSalvatore Bonaccorso2022-01-261-1/+3
|
* Process some more new NFUsSalvatore Bonaccorso2022-01-262-24/+24
|
* Add CVE-2022-23959/varnishSalvatore Bonaccorso2022-01-261-1/+5
|
* Process NFUNeil Williams2022-01-261-1/+1
|
* Process one NFUSalvatore Bonaccorso2022-01-261-1/+1
|

© 2014-2024 Faster IT GmbH | imprint | privacy policy