Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Mark libmobi issues as not affected according to the triage | Salvatore Bonaccorso | 2022-02-11 | 1 | -7/+7 |
| | | | | | | | As per aaba7c3a09b87f99af6f12f7929c38ce7d14930b the issues are not present in libmobi as uploaded initially to unstable. As such track them not-affected as the issue was fixed with or before the initial upload to Debian. | ||||
* | CVE-2018-1143{2-8}/libmobi tested in sid | Neil Williams | 2022-02-11 | 1 | -14/+7 |
| | | | | | | | 0.9+dfsg1-1 provides the mobitool binary that is described in the CVE disclosure. The poc.zip provides test ebooks to prompt failures. Each test produced either an error code or a normal operation instead of the described crashes. | ||||
* | CVE-2018-16301: Reference commit for 4.9 branch | Salvatore Bonaccorso | 2022-02-10 | 1 | -1/+2 |
| | |||||
* | Demote severity of CVE-2018-16301 to unimportant | Salvatore Bonaccorso | 2022-02-09 | 1 | -1/+2 |
| | |||||
* | automatic update | security tracker role | 2022-02-09 | 1 | -1/+1 |
| | |||||
* | Add CVE-2018-16301/tcpdump | Salvatore Bonaccorso | 2022-02-09 | 1 | -1/+5 |
| | | | | | | The CVE got restored, see details in https://github.com/the-tcpdump-group/libpcap/issues/855, while disputable this is now the fact. Track the fixed version. | ||||
* | Process several NFUs | Salvatore Bonaccorso | 2022-02-07 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2022-02-07 | 1 | -2/+2 |
| | |||||
* | CVE-2018-1279/rabbitmq-server: stretch postponed | Sylvain Beucler | 2022-02-04 | 1 | -0/+1 |
| | |||||
* | bullseyre/buster triage | Moritz Muehlenhoff | 2022-02-04 | 1 | -0/+1 |
| | |||||
* | Add Debian bug reference for CVE-2018-1279 | Salvatore Bonaccorso | 2022-02-04 | 1 | -1/+1 |
| | |||||
* | associate CVE-2018-1279 also with rabbitmq and track spu upload | Moritz Mühlenhoff | 2022-02-04 | 1 | -1/+3 |
| | |||||
* | automatic update | security tracker role | 2022-01-29 | 1 | -7/+19 |
| | |||||
* | Remove no-dsa tag for libraw in stretch | Abhijith PA | 2022-01-29 | 1 | -23/+4 |
| | | | | | | | | | | | | CVE-2017-14608, CVE-2017-16909, CVE-2017-16910, CVE-2018-5800 CVE-2018-5801, CVE-2018-5802, CVE-2018-5804, CVE-2018-5805, CVE-2018-5806, CVE-2018-5807, CVE-2018-5808, CVE-2018-5810, CVE-2018-5811, CVE-2018-5812, CVE-2018-5813, CVE-2018-5815, CVE-2018-5817, CVE-2018-5818, CVE-2018-5819, CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 Mark CVE-2018-5809, CVE-2018-10528, CVE-2018-10529, CVE-2018-20337, CVE-2020-15503 CVE-2020-24889 not-affected | ||||
* | automatic update | security tracker role | 2022-01-28 | 1 | -0/+2 |
| | |||||
* | automatic update | security tracker role | 2022-01-26 | 1 | -0/+2 |
| | |||||
* | automatic update | security tracker role | 2022-01-26 | 1 | -0/+1 |
| | |||||
* | CVE-2018-10195 has been fixed in recent upload | Thorsten Alteholz | 2022-01-25 | 1 | -1/+0 |
| | |||||
* | Update tracking for CVE-2018-16472/node-cached-path-relative | Salvatore Bonaccorso | 2022-01-25 | 1 | -1/+4 |
| | | | | | | This old CVE entry was tracked as NFU, but is actually in node-cached-path-relative and fixed in 1.0.2 upstream. Update tracking. Versions having fixed CVE-2018-16472 are then prone to CVE-2021-23518. | ||||
* | automatic update | security tracker role | 2022-01-18 | 1 | -0/+1 |
| | |||||
* | Reserve DLA-2887-1 for lighttpd | Anton Gladky | 2022-01-18 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2022-01-04 | 1 | -1/+1 |
| | |||||
* | "new" rust-smallvec issue | Moritz Muehlenhoff | 2022-01-03 | 1 | -6/+9 |
| | | | | | rust-sha2 n/a NFUs | ||||
* | automatic update | security tracker role | 2021-12-30 | 1 | -1/+1 |
| | |||||
* | Reserve DLA-2868-1 for advancecomp | Adrian Bunk | 2021-12-29 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2021-12-29 | 1 | -2/+2 |
| | |||||
* | Reserve DLA-2866-1 for uw-imap | Adrian Bunk | 2021-12-29 | 1 | -1/+0 |
| | |||||
* | Reserve DLA-2865-1 for resiprocate | Adrian Bunk | 2021-12-29 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2021-12-29 | 1 | -1/+1 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-12-28 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-12-28 | 1 | -4/+4 |
| | |||||
* | Remove notes for CVE-2018-12700, CVE was officially withdrawn by the ↵ | Salvatore Bonaccorso | 2021-12-28 | 1 | -5/+0 |
| | | | | assigning CNA | ||||
* | Reserve DLA-2860-1 for paramiko | Utkarsh Gupta | 2021-12-28 | 1 | -2/+0 |
| | |||||
* | automatic update | security tracker role | 2021-12-27 | 1 | -1/+2 |
| | |||||
* | automatic update | security tracker role | 2021-12-27 | 1 | -0/+12 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-12-24 | 1 | -2/+2 |
| | |||||
* | automatic update | security tracker role | 2021-12-24 | 1 | -4/+4 |
| | |||||
* | automatic update | security tracker role | 2021-12-21 | 1 | -12/+12 |
| | |||||
* | automatic update | security tracker role | 2021-12-20 | 1 | -2/+2 |
| | |||||
* | Reassociate some older NFUs with the php-laravel-framework source package | Salvatore Bonaccorso | 2021-12-15 | 1 | -2/+2 |
| | |||||
* | Add CVE-2018-10228/limesurvey | Salvatore Bonaccorso | 2021-12-15 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-12-14 | 1 | -2/+2 |
| | |||||
* | Add CVE-2018-25021/libtoxcore | Salvatore Bonaccorso | 2021-12-13 | 1 | -1/+4 |
| | |||||
* | Add CVE-2018-25022/libtoxcore | Salvatore Bonaccorso | 2021-12-13 | 1 | -1/+4 |
| | |||||
* | automatic update | security tracker role | 2021-12-13 | 1 | -0/+4 |
| | |||||
* | Update status for CVE-2018-11724/libmobi | Salvatore Bonaccorso | 2021-12-12 | 1 | -2/+2 |
| | |||||
* | Update status for CVE-2018-11725/libmobi | Salvatore Bonaccorso | 2021-12-12 | 1 | -2/+2 |
| | |||||
* | Update status for CVE-2018-11726/libmobi | Salvatore Bonaccorso | 2021-12-12 | 1 | -2/+2 |
| | |||||
* | Re-associate some older NFUs with libmobi source | Salvatore Bonaccorso | 2021-12-09 | 1 | -10/+30 |
| | |||||
* | Update status for CVE-2018-25018 | Salvatore Bonaccorso | 2021-12-08 | 1 | -3/+1 |
| |