Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Reference upstream commits for CVE-2021-2027{2,3,4,5,6}/privoxy | Salvatore Bonaccorso | 2021-03-06 | 1 | -0/+5 |
| | |||||
* | Stretch triage | Abhijith PA | 2021-03-06 | 1 | -0/+2 |
| | |||||
* | Add CVE-2021-20270/pygments | Salvatore Bonaccorso | 2021-03-06 | 1 | -0/+3 |
| | |||||
* | Add assigned CVEs fro privoxy | Salvatore Bonaccorso | 2021-03-06 | 1 | -0/+15 |
| | |||||
* | Add CVE-2021-27363/linux | Salvatore Bonaccorso | 2021-03-06 | 1 | -0/+2 |
| | |||||
* | Add CVE-2021-27364/linux | Salvatore Bonaccorso | 2021-03-06 | 1 | -0/+2 |
| | |||||
* | automatic update | security tracker role | 2021-03-06 | 1 | -14/+29 |
| | |||||
* | Add CVE-2021-27365/linux | Salvatore Bonaccorso | 2021-03-06 | 1 | -1/+3 |
| | |||||
* | Mark two adminer issues as no-dsa | Salvatore Bonaccorso | 2021-03-06 | 1 | -0/+1 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-05 | 1 | -14/+14 |
| | |||||
* | Add CVE-2021-28026/jpeg-xl | Salvatore Bonaccorso | 2021-03-05 | 1 | -1/+1 |
| | |||||
* | Add CVE-2021-28040/ossec-hids | Salvatore Bonaccorso | 2021-03-05 | 1 | -1/+1 |
| | |||||
* | Add CVE-2021-28041/openssh | Salvatore Bonaccorso | 2021-03-05 | 1 | -1/+5 |
| | |||||
* | automatic update | security tracker role | 2021-03-05 | 1 | -46/+196 |
| | |||||
* | Add upstream references for CVE-2021-340{3,4}/libytnef | Salvatore Bonaccorso | 2021-03-05 | 1 | -0/+4 |
| | |||||
* | CVEs assigned for XSA-367 and XSA-369 | Salvatore Bonaccorso | 2021-03-05 | 1 | -2/+2 |
| | |||||
* | Track fixed version for CVE-2021-3407/mupdf via unstable | Salvatore Bonaccorso | 2021-03-05 | 1 | -1/+1 |
| | |||||
* | Add CVE-2021-27907 | Salvatore Bonaccorso | 2021-03-05 | 1 | -0/+1 |
| | |||||
* | Add CVE-2021-21334/containerd | Salvatore Bonaccorso | 2021-03-05 | 1 | -0/+2 |
| | |||||
* | new neutron issue (concludes external check) | Moritz Muehlenhoff | 2021-03-05 | 1 | -0/+3 |
| | |||||
* | Process more NFUs | Salvatore Bonaccorso | 2021-03-05 | 1 | -11/+11 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-05 | 1 | -6/+6 |
| | |||||
* | Do not track CVE-2021-24032 for DLA-2573-1 | Salvatore Bonaccorso | 2021-03-05 | 1 | -1/+2 |
| | | | | | | | | The CVE was assigned for an incomplete fix (which affected indeed unstable and buster, but for stretch the issue in CVE-2021-24031 was in one go fixed with the correct fix without opening CVE-2021-24032). Adjust tracking to reflect the situation in the supported suites. | ||||
* | Update information on CVE-2021-20268/linux | Salvatore Bonaccorso | 2021-03-05 | 1 | -2/+5 |
| | |||||
* | automatic update | security tracker role | 2021-03-05 | 1 | -53/+69 |
| | |||||
* | Add CVE-2021-20268/linux | Salvatore Bonaccorso | 2021-03-05 | 1 | -0/+2 |
| | |||||
* | Add CVE-2021-20265/linux | Salvatore Bonaccorso | 2021-03-05 | 1 | -1/+3 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-04 | 1 | -14/+14 |
| | |||||
* | automatic update | security tracker role | 2021-03-04 | 1 | -38/+60 |
| | |||||
* | Remove tracking in CVE-2021-0448 (confirmed duplicate) | Salvatore Bonaccorso | 2021-03-04 | 1 | -4/+0 |
| | |||||
* | Update information on XSA-369 issue | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+3 |
| | |||||
* | new linux/xen issues | Moritz Muehlenhoff | 2021-03-04 | 1 | -0/+6 |
| | |||||
* | final polishing | Moritz Muehlenhoff | 2021-03-04 | 1 | -3/+4 |
| | |||||
* | Mark 7 CVEs affecting grub2 as ignored for stretch | Utkarsh Gupta | 2021-03-04 | 1 | -0/+2 |
| | |||||
* | Add new glpi issues | Salvatore Bonaccorso | 2021-03-04 | 1 | -3/+6 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-03-04 | 1 | -2/+2 |
| | |||||
* | Add CVE-2021-3418/grub2 | Salvatore Bonaccorso | 2021-03-04 | 1 | -0/+2 |
| | |||||
* | Add CVE-2021-26813/python-markdown2 | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+2 |
| | |||||
* | Add CVE-2021-22134/elasticsearch | Salvatore Bonaccorso | 2021-03-04 | 1 | -0/+1 |
| | |||||
* | Track the 5 other pillow CVEs as well | Salvatore Bonaccorso | 2021-03-04 | 1 | -0/+10 |
| | | | | | We still should try to clarify if the other three are potentially duplicated assignments between two CNAs | ||||
* | automatic update | security tracker role | 2021-03-04 | 1 | -10/+34 |
| | |||||
* | Track fixed version for three CVEs for pillow via unstable | Salvatore Bonaccorso | 2021-03-04 | 1 | -3/+3 |
| | | | | | | | | | | | | | | | | | | The changelog for pillow's upload to unstable lists completely different set of CVEs, question if they are typos or additional CVEs to be tracked, investigation pending. The are specifically: pillow (8.1.1-1) unstable; urgency=high . * New upstream version. - Use more specific regex chars to prevent ReDoS. CVE-2021-25292. - Fix OOB Read in TiffDecode.c, and check the tile validity before reading. CVE-2021-25291. - Fix negative size read in TiffDecode.c. CVE-2021-25290. - Fix OOB read in SgiRleDecode.c. CVE-2021-25293. - Incorrect error code checking in TiffDecode.c. CVE-2021-25289. | ||||
* | Track fixed version for CVE-2021-20230/stunnel4 | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+1 |
| | |||||
* | NFUs | Moritz Muehlenhoff | 2021-03-03 | 1 | -12/+15 |
| | | | | pillow ignored | ||||
* | Proces some more NFUs | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 |
| | |||||
* | Add new pillow issues | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 |
| | |||||
* | Add CVE-2021-27927/zabbix | Salvatore Bonaccorso | 2021-03-03 | 1 | -1/+2 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 |
| | |||||
* | Remove notes from CVE-2021-3419 (withdrawn by its CNA) | Salvatore Bonaccorso | 2021-03-03 | 1 | -5/+1 |
| | |||||
* | automatic update | security tracker role | 2021-03-03 | 1 | -52/+82 |
| |