Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Process some NFUs | Salvatore Bonaccorso | 2021-11-29 | 1 | -3/+3 |
| | |||||
* | automatic update | security tracker role | 2021-11-29 | 1 | -10/+13 |
| | |||||
* | mark CVE-2021-42717 as postponed | Thorsten Alteholz | 2021-11-29 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-44143 as postponed | Thorsten Alteholz | 2021-11-29 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-3903 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-29 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-3927 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-29 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-3928 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-28 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-3968 as not-affected for Stretch | Thorsten Alteholz | 2021-11-28 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-41165 and CVE-2021-41164 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-28 | 1 | -0/+2 |
| | |||||
* | mark CVE-2021-44225 as no-dsa for Jessie | Thorsten Alteholz | 2021-11-28 | 1 | -0/+1 |
| | |||||
* | quagga removed | Moritz Muehlenhoff | 2021-11-28 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-11-28 | 1 | -2/+4 |
| | |||||
* | Track CVE-2021-33560 and CVE-2021-40528 | Salvatore Bonaccorso | 2021-11-28 | 1 | -2/+2 |
| | | | | | | | | | | | This got complex as the initial CVE assignment got swapped later. Following other distributions we now recitify the old tracking. This now was really a unnecessary burden, in particular because the upstream repository commit reference will not swap the CVE in the commit message, which I would expect can cause some further confusions. Thus keep as well the notes about the swapping. | ||||
* | Add CVE-2021-4020/janus | Salvatore Bonaccorso | 2021-11-27 | 1 | -1/+4 |
| | |||||
* | automatic update | security tracker role | 2021-11-27 | 1 | -2/+5 |
| | |||||
* | jupyterhub entered the archive | Salvatore Bonaccorso | 2021-11-27 | 1 | -1/+3 |
| | |||||
* | Reserve DLA-2827-1 for bluez | Sylvain Beucler | 2021-11-27 | 1 | -1/+0 |
| | |||||
* | Track fixed version for CVE-2021-24119/mbedtls via unstable | Salvatore Bonaccorso | 2021-11-27 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-11-27 | 1 | -2/+12 |
| | |||||
* | Add CVE-2021-21707/php* | Salvatore Bonaccorso | 2021-11-27 | 1 | -1/+9 |
| | |||||
* | Add CVE-2021-4024/libpod | Salvatore Bonaccorso | 2021-11-27 | 1 | -1/+4 |
| | |||||
* | Mark CVE-2021-3935/pgbouncer as no-dsa | Salvatore Bonaccorso | 2021-11-27 | 1 | -0/+2 |
| | |||||
* | Mark CVE-2021-42343 as no-dsa | Salvatore Bonaccorso | 2021-11-27 | 1 | -0/+2 |
| | |||||
* | mark CVE-2021-3941 as no-dsa | Thorsten Alteholz | 2021-11-27 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-41136 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-27 | 1 | -0/+1 |
| | |||||
* | mark several CVEs of jqueryui as no-dsa | Thorsten Alteholz | 2021-11-27 | 1 | -0/+3 |
| | |||||
* | mark CVE-2021-23445 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-27 | 1 | -0/+1 |
| | |||||
* | Track fixed version for CVE-2021-3935/pgbouncer | Salvatore Bonaccorso | 2021-11-26 | 1 | -1/+1 |
| | | | | | This is for the similar issue as for CVE-2021-23214 for PostgreSQL, but has a different CVE. | ||||
* | Remove one TODO item | Salvatore Bonaccorso | 2021-11-26 | 1 | -1/+0 |
| | |||||
* | Process several NFUs | Salvatore Bonaccorso | 2021-11-26 | 1 | -14/+14 |
| | |||||
* | automatic update | security tracker role | 2021-11-26 | 1 | -30/+38 |
| | |||||
* | Update information for CVE-2021-3736/linux | Salvatore Bonaccorso | 2021-11-26 | 1 | -1/+4 |
| | |||||
* | Track fixed version for CVE-2021-28703/xen | Salvatore Bonaccorso | 2021-11-26 | 1 | -1/+5 |
| | | | | | | | | Fixed by code cleanup in Xen 4.14, and backported to security-supported Xen branches as a prerequisite of the fix for XSA-378. 4.14.0-1~exp1 was the first version in Debian including the fix. Link: https://xenbits.xen.org/xsa/advisory-387.html | ||||
* | CVE-2021-43400/bluez: stretch ignored | Sylvain Beucler | 2021-11-26 | 1 | -0/+1 |
| | |||||
* | Add blog post reference for CVE-2021-42717 | Salvatore Bonaccorso | 2021-11-26 | 1 | -0/+1 |
| | |||||
* | automatic update | security tracker role | 2021-11-26 | 1 | -1/+9 |
| | |||||
* | Track fixed version for CVE-2021-21240 via unstable | Salvatore Bonaccorso | 2021-11-26 | 1 | -1/+1 |
| | |||||
* | Track fixes for linux via unstable upload of 5.15.5-1 | Salvatore Bonaccorso | 2021-11-26 | 1 | -2/+2 |
| | |||||
* | Add CVE-2021-44225/keepalived | Salvatore Bonaccorso | 2021-11-26 | 1 | -0/+6 |
| | |||||
* | Add CVE-2021-4002/linux | Salvatore Bonaccorso | 2021-11-25 | 1 | -1/+4 |
| | |||||
* | mark CVE-2021-44223 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-25 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-37592 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-25 | 1 | -0/+1 |
| | |||||
* | mark CVE-2021-43398 as no-dsa for Stretch | Thorsten Alteholz | 2021-11-25 | 1 | -0/+1 |
| | |||||
* | Track fixes for wireshark via unstable | Salvatore Bonaccorso | 2021-11-25 | 1 | -9/+9 |
| | |||||
* | Mark CVE-2021-41270/symfony as no-dsa | Salvatore Bonaccorso | 2021-11-25 | 1 | -0/+1 |
| | |||||
* | Update status for CVE-2021-41270/symfony | Salvatore Bonaccorso | 2021-11-25 | 1 | -0/+2 |
| | |||||
* | Reference blog post for CVE-2021-41270 | Salvatore Bonaccorso | 2021-11-25 | 1 | -0/+1 |
| | |||||
* | Track fixed version for CVE-2021-42717/modsecurity-apache | Salvatore Bonaccorso | 2021-11-25 | 1 | -1/+1 |
| | |||||
* | Track fixed version for CVE-2021-42717/modsecurity | Salvatore Bonaccorso | 2021-11-25 | 1 | -1/+1 |
| | |||||
* | Cleanup some additional whitespaces | Salvatore Bonaccorso | 2021-11-25 | 1 | -2/+2 |
| |