Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | automatic update | security tracker role | 2021-03-02 | 1 | -71/+71 |
| | |||||
* | Mark CVE-2016-2568 ignored for bullseye | Salvatore Bonaccorso | 2021-02-28 | 1 | -0/+1 |
| | |||||
* | Mark CVE-2016-10127 as no-dsa for bullseye | Salvatore Bonaccorso | 2021-02-28 | 1 | -0/+1 |
| | |||||
* | mujs entered the archive, recheck some older CVEs | Salvatore Bonaccorso | 2021-02-18 | 1 | -13/+28 |
| | |||||
* | automatic update | security tracker role | 2021-02-15 | 1 | -2/+2 |
| | |||||
* | Remove no-dsa tags for upcoming busybox update in Stretch. | Markus Koschany | 2021-02-15 | 1 | -2/+0 |
| | |||||
* | Strip no-dsa tags for wavpack for jessie | Utkarsh Gupta | 2021-01-14 | 1 | -1/+0 |
| | |||||
* | Ignore CVE-2016-7964/dokuwiki for bullseye | Salvatore Bonaccorso | 2021-01-02 | 1 | -0/+1 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-01-01 | 1 | -8/+8 |
| | |||||
* | automatic update | security tracker role | 2021-01-01 | 1 | -0/+16 |
| | |||||
* | Replace dropbear repository reference with working URL | Salvatore Bonaccorso | 2020-12-31 | 1 | -4/+4 |
| | | | | | Apparently repository moved from https://secure.ucc.asn.au/hg/dropbear to https://hg.ucc.asn.au/dropbear and so replace previous references. | ||||
* | Process some NFUs | Salvatore Bonaccorso | 2020-12-31 | 1 | -5/+5 |
| | |||||
* | automatic update | security tracker role | 2020-12-31 | 1 | -10/+10 |
| | |||||
* | bullseye triage | Moritz Muehlenhoff | 2020-12-27 | 1 | -1/+4 |
| | |||||
* | Track fixed version via unstable for CVE-2016-7151/capstone | Salvatore Bonaccorso | 2020-12-20 | 1 | -1/+1 |
| | |||||
* | bullseye triage | Moritz Muehlenhoff | 2020-12-18 | 1 | -0/+1 |
| | |||||
* | Update information on CVE-2016-11086 | Salvatore Bonaccorso | 2020-12-15 | 1 | -10/+5 |
| | | | | | Mark it as unimportant as it does not affect the binary packages in Debian (by default, unless a user has removed the certificates). | ||||
* | Declared CVE-2016-11086 as minor issue since the problem is exploitable if ↵ | Ola Lundqvist | 2020-12-15 | 1 | -0/+11 |
| | | | | /etc/ssl/certs/ca-certificates.crt does not exist. However this file normally exists since ruby-oath depends on ruby who in turn depend on ca-certificates package which generates this file. This means that in Debian this file always eists unless the admin has intentionally removed it. So the package is vulnerable but typically not in Debian. Updating this vulnerability could even cause a regression because some server admin may intentionally have removed this file to not check the certificate. | ||||
* | bullseye triage | Moritz Muehlenhoff | 2020-12-14 | 1 | -0/+1 |
| | | | | remove arc entry entirely, crash in CLI tool w/o security impact | ||||
* | Cleanup CVEs which were withdrawn by its CNA (checked) | Salvatore Bonaccorso | 2020-12-11 | 1 | -1/+0 |
| | |||||
* | automatic update | security tracker role | 2020-12-11 | 1 | -0/+3 |
| | |||||
* | CVE/list: fix whitespace inconsistencies | Emilio Pozuelo Monfort | 2020-12-02 | 1 | -1/+1 |
| | |||||
* | CVE-2016-10516/python-werkzeug was fixed via pu | Emilio Pozuelo Monfort | 2020-11-24 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2020-11-21 | 1 | -1/+1 |
| | |||||
* | Remove no-dsa tagged entry which got an update | Salvatore Bonaccorso | 2020-11-21 | 1 | -1/+0 |
| | |||||
* | Track fixed version via unstable for CVE-2016-6175/php-gettext | Salvatore Bonaccorso | 2020-11-20 | 1 | -1/+1 |
| | |||||
* | Track fixed version for CVE-2016-10247/mupdf | Salvatore Bonaccorso | 2020-11-15 | 1 | -1/+1 |
| | |||||
* | Track fixed version for CVE-2016-10246/mupdf | Salvatore Bonaccorso | 2020-11-15 | 1 | -1/+1 |
| | |||||
* | zabbix: precise triage | Sylvain Beucler | 2020-11-12 | 1 | -0/+1 |
| | | | | | | CVE-2019-17382: stretch ignored CVE-2019-15132: reference patch CVE-2016-10742: reference patch | ||||
* | automatic update | security tracker role | 2020-11-06 | 1 | -3/+3 |
| | |||||
* | CVE/list: sort release entries after their package entry | Emilio Pozuelo Monfort | 2020-11-05 | 1 | -23/+23 |
| | |||||
* | automatic update | security tracker role | 2020-11-04 | 1 | -1/+1 |
| | |||||
* | Associate some older NFUs with src:tikiwiki | Salvatore Bonaccorso | 2020-10-22 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2020-10-21 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2020-10-17 | 1 | -2/+2 |
| | |||||
* | Update status for CVE-2016-1566/guacamole-client | Salvatore Bonaccorso | 2020-10-10 | 1 | -3/+3 |
| | |||||
* | Add Debian bug reference for CVE-2016-11086/ruby-oauth | Salvatore Bonaccorso | 2020-09-25 | 1 | -1/+1 |
| | |||||
* | Add CVE-2016-11086/ruby-ouath | Salvatore Bonaccorso | 2020-09-25 | 1 | -1/+2 |
| | |||||
* | automatic update | security tracker role | 2020-09-25 | 1 | -0/+2 |
| | |||||
* | Use HTTPs for repo.or.cz git repository references | Salvatore Bonaccorso | 2020-08-25 | 1 | -3/+3 |
| | |||||
* | Use HTTPS transport for www.openwall.com/lists/oss-security URLs | Salvatore Bonaccorso | 2020-08-24 | 1 | -390/+390 |
| | |||||
* | Replace nonworking https://cgit.kde.org referenes with github commits | Salvatore Bonaccorso | 2020-08-23 | 1 | -7/+7 |
| | |||||
* | Reference bugs.php.net URLs with HTTPS transport | Salvatore Bonaccorso | 2020-08-23 | 1 | -5/+5 |
| | |||||
* | Replace git.php.net HTTP URLs with HTTPS URLs | Salvatore Bonaccorso | 2020-08-23 | 1 | -24/+24 |
| | |||||
* | Switch some http://git.ghostscript.com URLS | Salvatore Bonaccorso | 2020-08-22 | 1 | -15/+15 |
| | |||||
* | new snmptt issue | Moritz Muehlenhoff | 2020-08-20 | 1 | -1/+1 |
| | | | | | new linux issue NFUs | ||||
* | automatic update | security tracker role | 2020-08-17 | 1 | -3/+3 |
| | |||||
* | automatic update | security tracker role | 2020-08-16 | 1 | -0/+2 |
| | |||||
* | Add fixed version for CVE-2016-10228/glibc via unstable | Salvatore Bonaccorso | 2020-08-04 | 1 | -1/+1 |
| | |||||
* | NFUs | Moritz Muehlenhoff | 2020-07-31 | 1 | -2/+2 |
| |