summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Use square bracketsupdate_CVE-2021-3426Anton Gladky2021-04-041-1/+1
|
* Update information about CVE-2021-3426Anton Gladky2021-04-031-1/+2
|
* automatic updatesecurity tracker role2021-04-031-0/+13
|
* Claim qemu in dla-needed.txtMarkus Koschany2021-04-031-1/+1
|
* Mark open CVE of libxstream-java as fixed in unstableMarkus Koschany2021-04-031-11/+11
|
* Reserve DLA-2616-1 for libxstream-javaMarkus Koschany2021-04-032-2/+3
|
* Track fixed version for CVE-2021-28834/ruby-kramdown via unstableSalvatore Bonaccorso2021-04-031-1/+1
|
* CVE-2021-21295,CVE-2021-21409,netty: Mark as ignored for StretchMarkus Koschany2021-04-031-0/+2
| | | | | | | | | The fix for both CVE requires a backport of the new HTTP2 API. There have been major changes between the current version in Stretch 4.1.7 and the most recent release 4.1.60. Since the logic changed and the API is marked as "unstable" in certain places, a backport poses a significant risk to break any project that still relies on the old logic. In contrast the security risk is low. Hence these issues are ignored in Stretch.
* Remove netty from dla-needed.txtMarkus Koschany2021-04-031-2/+0
|
* Claim libxstream-java in dla-needed.txtMarkus Koschany2021-04-031-1/+1
|
* dla: claim php-pearSylvain Beucler2021-04-031-1/+1
|
* CVE-2021-23980: reference directly commit instead of merge commitSalvatore Bonaccorso2021-04-031-1/+1
|
* dla: add ruby-nokogiri following conversation with initial triagerSylvain Beucler2021-04-031-0/+4
|
* Track fix via experimental for CVE-2021-3426/python3.9Salvatore Bonaccorso2021-04-031-0/+1
|
* Add information for CVE-2020-24995/ffmpegSalvatore Bonaccorso2021-04-031-1/+8
|
* automatic updatesecurity tracker role2021-04-032-20/+24
|
* Track fixed version for CVE-2021-20305/nettleSalvatore Bonaccorso2021-04-031-1/+1
|
* Add fixed version for CVE-2021-21772/lib3mfSalvatore Bonaccorso2021-04-031-1/+1
|
* Add CVE-2021-27973/piwigoSalvatore Bonaccorso2021-04-031-1/+1
|
* Process NFUsSalvatore Bonaccorso2021-04-033-145/+145
|
* Add CVE-2021-29939/rust-stackvectorSalvatore Bonaccorso2021-04-031-1/+2
|
* Process some NFUsSalvatore Bonaccorso2021-04-021-8/+8
|
* automatic updatesecurity tracker role2021-04-024-328/+553
|
* Add CVE-2021-22696 as NFUSalvatore Bonaccorso2021-04-021-0/+1
|
* CVE-2020-4051/dojo: reference patchSylvain Beucler2021-04-021-0/+1
|
* dla: golang-gogoprotobuf: reference mailing-list threadSylvain Beucler2021-04-021-0/+1
|
* CVE-2020-26248/ruby-nokogiri: code is mostly present in stretch AFAICSSylvain Beucler2021-04-021-1/+0
|
* CVE-2020-13757/python-rsa: fix reasonSylvain Beucler2021-04-021-1/+1
| | | | There actually is a rdep (awscli)
* Add CVE-2021-3481/qtsvgSalvatore Bonaccorso2021-04-021-2/+11
|
* Add CVE-2021-29657/linuxSalvatore Bonaccorso2021-04-021-1/+5
|
* Add reference for CVE-2021-3326/glibcSalvatore Bonaccorso2021-04-021-0/+1
|
* Add reference for CVE-2021-3345Salvatore Bonaccorso2021-04-021-0/+1
|
* Add CVE-2021-29421/pikepdf bug referenceSalvatore Bonaccorso2021-04-021-1/+1
|
* Add Debian bug reference for CVE-2021-28994/kopanocoreSalvatore Bonaccorso2021-04-021-1/+1
|
* Add CVE-2021-28994/kopanocoreSalvatore Bonaccorso2021-04-021-1/+2
|
* Add CVE-2021-29421/pikepdfSalvatore Bonaccorso2021-04-021-1/+2
|
* Process some NFUsSalvatore Bonaccorso2021-04-022-11/+11
|
* Add CVE-2021-30004/wpaSalvatore Bonaccorso2021-04-021-1/+2
|
* automatic updatesecurity tracker role2021-04-022-29/+153
|
* Add CVE-2021-30002/linuxSalvatore Bonaccorso2021-04-021-0/+4
|
* Reserve DSA number for ldb updateSalvatore Bonaccorso2021-04-022-2/+3
|
* Add Debian bug reference for CVE-2021-22890/curlSalvatore Bonaccorso2021-04-021-1/+1
|
* Add Debian bug reference for CVE-2021-22876/curlSalvatore Bonaccorso2021-04-021-1/+1
|
* Mark CVE-2021-29424/libnet-netmask-perl as no-dsaSalvatore Bonaccorso2021-04-021-0/+1
|
* Reserve DLA-2615-1 for spamassassinUtkarsh Gupta2021-04-022-2/+3
|
* Process several NFUsSalvatore Bonaccorso2021-04-012-21/+21
|
* automatic updatesecurity tracker role2021-04-012-76/+75
|
* fixup DSA entryMoritz Mühlenhoff2021-04-011-0/+1
|
* underscore, openjpeg2 DSAsMoritz Mühlenhoff2021-04-012-4/+5
|
* Sync CVE-2021-29648 with kernel-secSalvatore Bonaccorso2021-04-011-1/+1
|

© 2014-2024 Faster IT GmbH | imprint | privacy policy