| Commit message (Collapse) | Author | Age | Files | Lines | ||
|---|---|---|---|---|---|---|
| ... | ||||||
| * | automatic update | security tracker role | 2021-03-04 | 2 | -14/+38 | |
| | | ||||||
| * | Track fixed version for three CVEs for pillow via unstable | Salvatore Bonaccorso | 2021-03-04 | 1 | -3/+3 | |
| | | | | | | | | | | | | | | | | | | | The changelog for pillow's upload to unstable lists completely different set of CVEs, question if they are typos or additional CVEs to be tracked, investigation pending. The are specifically: pillow (8.1.1-1) unstable; urgency=high . * New upstream version. - Use more specific regex chars to prevent ReDoS. CVE-2021-25292. - Fix OOB Read in TiffDecode.c, and check the tile validity before reading. CVE-2021-25291. - Fix negative size read in TiffDecode.c. CVE-2021-25290. - Fix OOB read in SgiRleDecode.c. CVE-2021-25293. - Incorrect error code checking in TiffDecode.c. CVE-2021-25289. | |||||
| * | Track fixed version for CVE-2021-20230/stunnel4 | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+1 | |
| | | ||||||
| * | NFUs | Moritz Muehlenhoff | 2021-03-03 | 2 | -13/+16 | |
| | | | | | pillow ignored | |||||
| * | Proces some more NFUs | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 | |
| | | ||||||
| * | Add new pillow issues | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 | |
| | | ||||||
| * | Add CVE-2021-27927/zabbix | Salvatore Bonaccorso | 2021-03-03 | 1 | -1/+2 | |
| | | ||||||
| * | Process some NFUs | Salvatore Bonaccorso | 2021-03-03 | 2 | -4/+4 | |
| | | ||||||
| * | Remove notes from CVE-2021-3419 (withdrawn by its CNA) | Salvatore Bonaccorso | 2021-03-03 | 1 | -5/+1 | |
| | | ||||||
| * | CVE-2020-28498/node-elliptic fixed in unstable | Salvatore Bonaccorso | 2021-03-03 | 1 | -1/+1 | |
| | | ||||||
| * | automatic update | security tracker role | 2021-03-03 | 2 | -79/+103 | |
| | | ||||||
| * | qemu, newlib bugs | Moritz Mühlenhoff | 2021-03-03 | 2 | -10/+18 | |
| | | ||||||
| * | add libnewlib-nano to affected source packages | Moritz Mühlenhoff | 2021-03-03 | 1 | -1/+3 | |
| | | ||||||
| * | Take mupdf | Utkarsh Gupta | 2021-03-04 | 1 | -1/+1 | |
| | | ||||||
| * | Add note and attribution for grub2 | Utkarsh Gupta | 2021-03-04 | 1 | -2/+3 | |
| | | ||||||
| * | CVE-2018-16873/golang: fix my inconsistent sort | Sylvain Beucler | 2021-03-03 | 1 | -1/+1 | |
| | | ||||||
| * | Add reference for CVE-2021-23334 | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 | |
| | | ||||||
| * | Add suggested handling for grub2 in stretch | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+2 | |
| | | ||||||
| * | newlib issue affects picolibc | Moritz Muehlenhoff | 2021-03-03 | 1 | -1/+3 | |
| | | ||||||
| * | Add mqtt-client, mupdf, grub2 to dla-needed.txt | Abhijith PA | 2021-03-03 | 1 | -0/+7 | |
| | | ||||||
| * | Track proposed update for libbsd via buster-pu | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+2 | |
| | | ||||||
| * | Track pending CVE fixes for buster-pu for linux upload | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+8 | |
| | | ||||||
| * | qemu n/a for released suites | Moritz Muehlenhoff | 2021-03-03 | 1 | -3/+3 | |
| | | ||||||
| * | Process some NFUs | Salvatore Bonaccorso | 2021-03-03 | 2 | -15/+15 | |
| | | ||||||
| * | Add two glpi issues | Salvatore Bonaccorso | 2021-03-03 | 1 | -2/+6 | |
| | | ||||||
| * | Add CVE-2021-3420/newlib | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+3 | |
| | | ||||||
| * | automatic update | security tracker role | 2021-03-03 | 2 | -41/+42 | |
| | | ||||||
| * | Add note for CVE-2021-3408 (duplicate of CVE-2021-20233) | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 | |
| | | ||||||
| * | Add CVE-2021-20263/qemu | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+5 | |
| | | ||||||
| * | Add CVE-2021-20262 | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 | |
| | | ||||||
| * | Add CVE-2020-25715/dogtag-pki | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+3 | |
| | | ||||||
| * | Track upstream commit for CVE-2021-27645/glibc | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 | |
| | | ||||||
| * | Adjust source package name for chromium | Salvatore Bonaccorso | 2021-03-03 | 1 | -2/+2 | |
| | | ||||||
| * | new chromium issues | Moritz Muehlenhoff | 2021-03-02 | 2 | -0/+66 | |
| | | ||||||
| * | Take tomcat7 | Utkarsh Gupta | 2021-03-03 | 1 | -1/+1 | |
| | | ||||||
| * | Reserve DLA-2581-1 for wpa | Utkarsh Gupta | 2021-03-03 | 2 | -2/+3 | |
| | | ||||||
| * | LTS: pick up tomcat8 | Anton Gladky | 2021-03-02 | 1 | -1/+1 | |
| | | ||||||
| * | Mark CVE-2020-1936 as NFU | Salvatore Bonaccorso | 2021-03-02 | 1 | -1/+1 | |
| | | ||||||
| * | Process some NFUs | Salvatore Bonaccorso | 2021-03-02 | 1 | -7/+7 | |
| | | ||||||
| * | Process NFUs | Salvatore Bonaccorso | 2021-03-02 | 2 | -5/+5 | |
| | | ||||||
| * | automatic update | security tracker role | 2021-03-02 | 2 | -30/+66 | |
| | | ||||||
| * | Reserve DLA-2580-1 for adminer | Utkarsh Gupta | 2021-03-03 | 2 | -3/+3 | |
| | | ||||||
| * | Drop python-aiohttp from dla-needed; not-affected | Utkarsh Gupta | 2021-03-03 | 1 | -2/+0 | |
| | | ||||||
| * | Mark CVE-2021-21330/python-aiohttp as not-affected for stretch | Utkarsh Gupta | 2021-03-03 | 1 | -0/+1 | |
| | | ||||||
| * | Note on guacamole-server | Anton Gladky | 2021-03-02 | 1 | -0/+1 | |
| | | ||||||
| * | grub2 issues fixed in unstable | Salvatore Bonaccorso | 2021-03-02 | 2 | -7/+7 | |
| | | ||||||
| * | Reserve DSA number for grub2 | Salvatore Bonaccorso | 2021-03-02 | 1 | -0/+3 | |
| | | ||||||
| * | Add tracking of new grub2 issues | Salvatore Bonaccorso | 2021-03-02 | 2 | -0/+7 | |
| | | ||||||
| * | CVE-2017-15041/golang: reference regression | Sylvain Beucler | 2021-03-02 | 1 | -2/+3 | |
| | | ||||||
| * | salt fixed in sid | Moritz Muehlenhoff | 2021-03-02 | 2 | -10/+10 | |
| | | ||||||
 |
index : (Testing repo) Debian Security Tracker with split CVE files (v2) | |
| Testing repo for split files effort (Format yyyy.list) |
| summaryrefslogtreecommitdiffstats |
© 2014-2024 Faster IT GmbH | imprint | privacy policy