summaryrefslogtreecommitdiffstats
path: root/data/CVE
Commit message (Collapse)AuthorAgeFilesLines
* Process some NFUsSalvatore Bonaccorso2021-11-291-3/+3
|
* automatic updatesecurity tracker role2021-11-291-10/+13
|
* mark CVE-2021-42717 as postponedThorsten Alteholz2021-11-291-0/+1
|
* mark CVE-2021-44143 as postponedThorsten Alteholz2021-11-291-0/+1
|
* mark CVE-2021-3903 as no-dsa for StretchThorsten Alteholz2021-11-291-0/+1
|
* mark CVE-2021-3927 as no-dsa for StretchThorsten Alteholz2021-11-291-0/+1
|
* mark CVE-2021-3928 as no-dsa for StretchThorsten Alteholz2021-11-281-0/+1
|
* mark CVE-2021-3968 as not-affected for StretchThorsten Alteholz2021-11-281-0/+1
|
* mark CVE-2021-41165 and CVE-2021-41164 as no-dsa for StretchThorsten Alteholz2021-11-281-0/+2
|
* mark CVE-2020-23904 and CVE-2020-23903 as no-dsa for StretchThorsten Alteholz2021-11-281-0/+2
|
* mark CVE-2021-44225 as no-dsa for JessieThorsten Alteholz2021-11-281-0/+1
|
* quagga removedMoritz Muehlenhoff2021-11-283-3/+3
|
* automatic updatesecurity tracker role2021-11-284-5/+7
|
* Track CVE-2021-33560 and CVE-2021-40528Salvatore Bonaccorso2021-11-281-2/+2
| | | | | | | | | | | This got complex as the initial CVE assignment got swapped later. Following other distributions we now recitify the old tracking. This now was really a unnecessary burden, in particular because the upstream repository commit reference will not swap the CVE in the commit message, which I would expect can cause some further confusions. Thus keep as well the notes about the swapping.
* Reserve DLA-2831-1 for libntlmAdrian Bunk2021-11-281-1/+0
|
* stretch is not affected by CVE-2019-20792Adrian Bunk2021-11-281-1/+1
|
* Reserve DLA-2830-1 for tarAdrian Bunk2021-11-281-1/+0
|
* automatic updatesecurity tracker role2021-11-281-1/+1
|
* Reserve DLA-2829-1 for libvpxAdrian Bunk2021-11-271-1/+0
|
* Add CVE-2021-4020/janusSalvatore Bonaccorso2021-11-271-1/+4
|
* automatic updatesecurity tracker role2021-11-274-5/+10
|
* Reserve DLA-2828-1 for libvorbisAdrian Bunk2021-11-272-3/+0
|
* Associate CVE-2020-26261 with jupyterhub-systemdspawner which is different ↵Salvatore Bonaccorso2021-11-271-1/+1
| | | | from JupyterHub itself
* jupyterhub entered the archiveSalvatore Bonaccorso2021-11-273-2/+6
|
* Reserve DLA-2827-1 for bluezSylvain Beucler2021-11-271-1/+0
|
* Track fixed version for CVE-2021-24119/mbedtls via unstableSalvatore Bonaccorso2021-11-271-1/+1
|
* automatic updatesecurity tracker role2021-11-271-2/+12
|
* CVE-2020-11987/batik fixed via unstableSalvatore Bonaccorso2021-11-271-1/+1
|
* Add CVE-2021-21707/php*Salvatore Bonaccorso2021-11-271-1/+9
|
* Add CVE-2021-4024/libpodSalvatore Bonaccorso2021-11-271-1/+4
|
* Mark CVE-2021-3935/pgbouncer as no-dsaSalvatore Bonaccorso2021-11-271-0/+2
|
* Mark CVE-2021-42343 as no-dsaSalvatore Bonaccorso2021-11-271-0/+2
|
* mark CVE-2021-3941 as no-dsaThorsten Alteholz2021-11-271-0/+1
|
* mark CVE-2021-41136 as no-dsa for StretchThorsten Alteholz2021-11-271-0/+1
|
* mark CVE-2020-27511 as no-dsa for StretchThorsten Alteholz2021-11-271-0/+1
|
* mark CVE-2020-23884 as no-dsa for StretchThorsten Alteholz2021-11-271-0/+1
|
* mark several CVEs of jqueryui as no-dsaThorsten Alteholz2021-11-271-0/+3
|
* mark CVE-2021-23445 as no-dsa for StretchThorsten Alteholz2021-11-271-0/+1
|
* Track fixed version for CVE-2021-3935/pgbouncerSalvatore Bonaccorso2021-11-261-1/+1
| | | | | This is for the similar issue as for CVE-2021-23214 for PostgreSQL, but has a different CVE.
* Remove one TODO itemSalvatore Bonaccorso2021-11-261-1/+0
|
* Process several NFUsSalvatore Bonaccorso2021-11-262-15/+15
|
* Cleanup notes from CVE-2015-5202Salvatore Bonaccorso2021-11-261-1/+0
| | | | This CVE was a duplicate of CVE-2015-5233.
* automatic updatesecurity tracker role2021-11-264-33/+142
|
* Update information for CVE-2021-3736/linuxSalvatore Bonaccorso2021-11-261-1/+4
|
* Track fixed version for CVE-2021-28703/xenSalvatore Bonaccorso2021-11-261-1/+5
| | | | | | | | Fixed by code cleanup in Xen 4.14, and backported to security-supported Xen branches as a prerequisite of the fix for XSA-378. 4.14.0-1~exp1 was the first version in Debian including the fix. Link: https://xenbits.xen.org/xsa/advisory-387.html
* CVE-2021-43400/bluez: stretch ignoredSylvain Beucler2021-11-261-0/+1
|
* Add blog post reference for CVE-2021-42717Salvatore Bonaccorso2021-11-261-0/+1
|
* automatic updatesecurity tracker role2021-11-261-1/+9
|
* Track fixed version for CVE-2021-21240 via unstableSalvatore Bonaccorso2021-11-261-1/+1
|
* Track fixes for linux via unstable upload of 5.15.5-1Salvatore Bonaccorso2021-11-262-3/+3
|

© 2014-2024 Faster IT GmbH | imprint | privacy policy