Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Update state for old CVE-2019-14826/freeipa | Salvatore Bonaccorso | 2021-10-13 | 1 | -2/+3 |
| | | | | | | | | | | The security risk is negligible as the vulnerability to be exposed would need someone to access FreeIPA in a non-standard fashion with an insecure web browser or a client application that stores and shares excessive debugging information. The issue does not seem to be going to be addressed upstream, so demote the severity to unimportant and negligible security impact. | ||||
* | automatic update | security tracker role | 2021-10-12 | 1 | -1/+1 |
| | |||||
* | lua5.3 fixed in sid | Moritz Muehlenhoff | 2021-10-12 | 1 | -1/+1 |
| | |||||
* | mark CVE-2019-15165 as ignored | Moritz Muehlenhoff | 2021-10-09 | 1 | -2/+2 |
| | |||||
* | Merge in the accepted packages from buster 10.11 | Salvatore Bonaccorso | 2021-10-09 | 1 | -3/+3 |
| | | | | | | | | Though the release has not been happened yet, this is the list of packages which were copied over from buster-pu to buster. The final 10.11 changes need to still be verifed for any missing additional ones. | ||||
* | automatic update | security tracker role | 2021-10-04 | 1 | -0/+1 |
| | |||||
* | Remove no-dsa tags for upcoming fig2dev update | Markus Koschany | 2021-10-04 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2021-09-29 | 1 | -1/+1 |
| | |||||
* | CVE-2021-40690,CVE-2019-12400,libxml-security-java: Fixed in unstable | Markus Koschany | 2021-09-23 | 1 | -1/+1 |
| | |||||
* | Update information on CVE-2019-20079/vim | Salvatore Bonaccorso | 2021-09-23 | 1 | -2/+3 |
| | |||||
* | NFUs | Moritz Muehlenhoff | 2021-09-23 | 1 | -1/+1 |
| | |||||
* | Reassociate some of the Mattermost NFUs to the ITP'ed entries | Salvatore Bonaccorso | 2021-09-22 | 1 | -43/+43 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-09-22 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-09-22 | 1 | -2/+2 |
| | |||||
* | Update ccextractor for 0.93+ds2-1 upload | Neil Williams | 2021-09-21 | 1 | -9/+9 |
| | |||||
* | automatic update | security tracker role | 2021-09-20 | 1 | -2/+2 |
| | |||||
* | Mark ccextractor issues as no-dsa | Salvatore Bonaccorso | 2021-09-20 | 1 | -0/+18 |
| | |||||
* | Record CVEs affecting ccextractor embedding gpac | Neil Williams | 2021-09-20 | 1 | -0/+9 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-09-17 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-09-17 | 1 | -2/+2 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-09-15 | 1 | -2/+2 |
| | |||||
* | automatic update | security tracker role | 2021-09-14 | 1 | -2/+2 |
| | |||||
* | Mark rkt as removed from unstable | Salvatore Bonaccorso | 2021-09-14 | 1 | -3/+3 |
| | |||||
* | automatic update | security tracker role | 2021-09-14 | 1 | -2/+2 |
| | |||||
* | Process some more NFUs | Salvatore Bonaccorso | 2021-09-08 | 1 | -1/+1 |
| | |||||
* | Remove notes from CVE-2019-18351 | Salvatore Bonaccorso | 2021-09-08 | 1 | -4/+0 |
| | |||||
* | automatic update | security tracker role | 2021-09-08 | 1 | -1/+2 |
| | |||||
* | Remove notes from CVE-2019-18790 | Salvatore Bonaccorso | 2021-09-08 | 1 | -3/+0 |
| | | | | | As they are not needed anymore. MITRE confirmed that CVE-2019-18351 is just a duplicate and will be rejected. | ||||
* | automatic update | security tracker role | 2021-09-07 | 1 | -2/+2 |
| | |||||
* | update CVE-2019-18351 | Neil Williams | 2021-09-06 | 1 | -1/+0 |
| | |||||
* | Add noe for CVE-2019-0053/inetutils | Salvatore Bonaccorso | 2021-09-05 | 1 | -0/+3 |
| | | | | | | | | There was a followup fix for inetutils not directly covered by the CVE which fixed a following infitinte loop causing stack exhaustion, as noted by Adrian Bunk. Link: https://bugs.debian.org/945861#30 | ||||
* | some zoneminder issues fixed | Moritz Muehlenhoff | 2021-09-03 | 1 | -4/+11 |
| | |||||
* | automatic update | security tracker role | 2021-09-02 | 1 | -2/+1 |
| | |||||
* | NFUs | Moritz Muehlenhoff | 2021-09-02 | 1 | -0/+1 |
| | |||||
* | automatic update | security tracker role | 2021-08-30 | 1 | -1/+1 |
| | |||||
* | Remove no-dsa tagged entries which got an update for exiv2 in stretch | Salvatore Bonaccorso | 2021-08-30 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2021-08-29 | 1 | -1/+1 |
| | |||||
* | Stretch will be fixed | Thorsten Alteholz | 2021-08-29 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2021-08-23 | 1 | -1/+1 |
| | |||||
* | CVE-2019-18849 will be fixed by next upload | Thorsten Alteholz | 2021-08-23 | 1 | -1/+0 |
| | |||||
* | Update information for several binutils issues | Salvatore Bonaccorso | 2021-08-15 | 1 | -2/+2 |
| | |||||
* | automatic update | security tracker role | 2021-08-14 | 1 | -0/+1 |
| | |||||
* | new ffmpeg issues | Moritz Mühlenhoff | 2021-08-12 | 1 | -1/+1 |
| | | | | NFUs | ||||
* | automatic update | security tracker role | 2021-08-11 | 1 | -0/+2 |
| | |||||
* | Update notes on CVE-2020-19715 and CVE-2019-13110 | Salvatore Bonaccorso | 2021-08-10 | 1 | -0/+1 |
| | |||||
* | new opensysuser issue | Moritz Mühlenhoff | 2021-08-10 | 1 | -2/+2 |
| | | | | clarify some older entries after reintroduction of Thrift Java bindings | ||||
* | automatic update | security tracker role | 2021-08-07 | 1 | -3/+5 |
| | |||||
* | remove some no-dsa entries for issues lined up with next update | Moritz Muehlenhoff | 2021-08-06 | 1 | -5/+0 |
| | |||||
* | drop a few no-dsa entries for exiv, which will be fixed along in DSA | Moritz Muehlenhoff | 2021-08-06 | 1 | -1/+0 |
| | |||||
* | bullseye/buster triage | Moritz Muehlenhoff | 2021-08-05 | 1 | -0/+1 |
| |