| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This reverts commit 63a9aa4515f4335203346034dcf842b067ab0fcc.
Samuel Henrique reported on IRC to get a message "release note must
follow its package note" when trying to commit
diff --git c/data/CVE/list i/data/CVE/list
index 5f829a4c..a3741dd6 100644
--- c/data/CVE/list
+++ i/data/CVE/list
@@ -92086,10 +92086,12 @@ CVE-2022-28702 (Incorrect Default Permissions vulnerability in ABB e-Design allo
CVE-2022-1615 (In Samba, GnuTLS gnutls_rnd() can fail and give predictable random val ...)
[experimental] - samba 2:4.17.0+dfsg-1
- samba 2:4.16.5+dfsg-2 (bug #1021024)
+ [buster] - sambda <not-affected> (Vulnerable code introduced later)
[bullseye] - samba <postponed> (Minor issue)
NOTE: https://bugzilla.samba.org/show_bug.cgi?id=15103
NOTE: https://gitlab.com/samba-team/samba/-/merge_requests/2644
- NOTE: https://gitlab.com/samba-team/samba/-/commit/9849e7440e30853c61a80ce1f11b7b244ed766fe (samba-4.17.0rc1)
+ NOTE: Introduced by: https://gitlab.com/samba-team/samba/-/commit/664eed2e926f8f572b81e6d7c8e09b7ccbafb908 (samba-4.12.0)
+ NOTE: Fixed by: https://gitlab.com/samba-team/samba/-/commit/9849e7440e30853c61a80ce1f11b7b244ed766fe (samba-4.17.0rc1)
CVE-2022-1614 (The WP-EMail WordPress plugin before 2.69.0 prioritizes getting a visi ...)
NOT-FOR-US: WordPress plugin
CVE-2022-1613 (The Restricted Site Access WordPress plugin before 7.3.2 prioritizes g ...)
In this case the error comes because of the release "[buster] - sambda
..." does not follow a package note "- sambda ...", which hints this
time to a possible typo in the source package name. If the source
package name would have been correct, the syntax check would have
indicated the wrong order next.
But this is not generally only a hint to a typo. Samewise the message
would come if two source package enties are covered and a release note
is put before the actual package note, e.g.
- linux ...
[buster] - amd64-microcode ...
- amd64-microcode
Revert the change as the hint is given to check if something is wrong
adding the release note. It *might* be a typo in the source package
note, but it might be as well a release note which is missplaced but
valid.
That said, this hints at that the notation of 'package note' and
'release note' is not sufficiently well explained and might need some
clarification in the message from the syntax check or documentation.
|
| |
|
| |
|
|
|
|
|
| |
string sort doesn't work here, as buster < jessie < stretch.
However Release's sort will dtrt.
|
|
|
|
| |
Like in the other PackageNote objects
|
| |
|
|
|
|
| |
Needed for py3 compatibility.
|
|
|
|
| |
types.TypeFoo are gone in python3.
|
|
|
|
|
| |
Under Python 3, keys() doesn't return a list (as in Python 2), but
must be evaluated before it can be used as a list.
|
| |
|
|
|
|
| |
syntax is not actually valid in Python 3.
|
|
|
|
|
|
| |
Otherwise, they will get rehashed into a different temp
name, preventing one to add notes to TEMP entries in an
extend file.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
|
| |
BugExtend.writeDB() is pretty similar to BugBase's, so
update the latter to take extends into account when
necessary to avoid unneeded duplicated code.
|
| |
|
|
|
|
|
| |
The only difference is that the regular expressions look for DSA
or DLA, but we can just guess that based on the path.
|
|
|
|
| |
Subclass DSAFile rather than copying it.
|
| |
|
| |
|
|
|
|
|
|
|
| |
They will be stored in the "reason" field from package_notes_nodsa
table, that was unused so far.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54580 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
| |
debian_support.py)"
This reverts commit a47339bf5db9ec1be2709e1e687c2b5d5df313e7.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@29229 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@29228 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
| |
abuses urgency for now, until the packages_notes table has a tag
column.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@29026 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28739 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
| |
to soler.d.o)
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28539 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
| |
applied this to soler.d.o)"
This reverts commit 6357e7f64b5cdab2f194dc5a1ae0ff309bb625f6.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28536 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
| |
to soler.d.o)
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28525 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@24590 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
|
|
| |
fw: why is there a reason field? it doesn't seem to be used at all. In
fact, it pretty much looks like 'comment' is redundant and 'reason'
should be the one getting a value assigned.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19975 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
| |
Thanks to Stefan Fritsch for the suggestion.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15860 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14058 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14057 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
| |
comments are very welcome.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13694 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
| |
breaks, I'll revert. Unfortunately I don't have a test setup
for the Security Tracker and I don't know how to setup one.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13667 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13057 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
| |
The reason is that even in Python 2.5, numeric objects fluctuate
between int and long types.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@10465 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
|
|
|
|
| |
Without this change, an update from the CVE database may result
in failed consistency checks, which is not desirable.
In a later commit, the web front end will be extended to list
such CVE entries. This will provide interested parties with
a means to perform cleanups.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7720 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7719 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
| |
This means that we can simplify bugs.BugBase.cveStatus a bit.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7718 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The following methods are removed:
bugs.PackageNote.affects
bugs.PackageNote.affectsKernel
bugs.PackageNote.fixedVersion
bugs.PackageNote.sourceStatus
bugs.BugBase.hasTODO
bugs.BugBase.isKernelOnly
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7715 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
| |
Losen type checks for string arguments, to support Unicode strings.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5989 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
| |
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5861 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
entries for etch, and new ones for lenny. Our previous automatic
tagging of all entries as etch does not work anymore. Hence,
we make the release indicator explicit.
* lib/python/bugs.py (DTSAFile.finishBug):
Verify that a release has been specified. No longer default to
"etch".
* data/DTSA/list
Mark all entries as etch.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5632 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This allows us to track firefox issues again.
* lib/python/bugs.py (FileBase):
Keep track of removed packages.
* lib/python/security_db.py
(DB.readBugs): Populate removed_packages table using <removed> entries.
(DB.readRemovedPackages): Remove method.
* bin/update-db:
Do not call readRemovedPackages anymore.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5470 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
|
| |
(Yeah, less than stellar engineering that this isn't concentrated
in a single place.)
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5103 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
| |
Yet another fix for ~ versions.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4782 e39458fd-73e7-0310-bf30-c45bca0a0e42
|
|
|
|
|
|
|
| |
Fix name generation for bugs involving <no-dsa> notes.
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4110 e39458fd-73e7-0310-bf30-c45bca0a0e42
|