Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | automatic update | security tracker role | 2021-03-04 | 2 | -64/+86 |
| | |||||
* | Remove tracking in CVE-2021-0448 (confirmed duplicate) | Salvatore Bonaccorso | 2021-03-04 | 1 | -4/+0 |
| | |||||
* | Update information on XSA-369 issue | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+3 |
| | |||||
* | new linux/xen issues | Moritz Muehlenhoff | 2021-03-04 | 1 | -0/+6 |
| | |||||
* | final polishing | Moritz Muehlenhoff | 2021-03-04 | 1 | -3/+4 |
| | |||||
* | Mark 7 CVEs affecting grub2 as ignored for stretch | Utkarsh Gupta | 2021-03-04 | 2 | -0/+7 |
| | |||||
* | Add new glpi issues | Salvatore Bonaccorso | 2021-03-04 | 1 | -3/+6 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-03-04 | 3 | -5/+5 |
| | |||||
* | Add CVE-2021-3418/grub2 | Salvatore Bonaccorso | 2021-03-04 | 1 | -0/+2 |
| | |||||
* | Add CVE-2021-26813/python-markdown2 | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+2 |
| | |||||
* | Add CVE-2021-22134/elasticsearch | Salvatore Bonaccorso | 2021-03-04 | 1 | -0/+1 |
| | |||||
* | Track the 5 other pillow CVEs as well | Salvatore Bonaccorso | 2021-03-04 | 1 | -0/+10 |
| | | | | | We still should try to clarify if the other three are potentially duplicated assignments between two CNAs | ||||
* | automatic update | security tracker role | 2021-03-04 | 2 | -14/+38 |
| | |||||
* | Track fixed version for three CVEs for pillow via unstable | Salvatore Bonaccorso | 2021-03-04 | 1 | -3/+3 |
| | | | | | | | | | | | | | | | | | | The changelog for pillow's upload to unstable lists completely different set of CVEs, question if they are typos or additional CVEs to be tracked, investigation pending. The are specifically: pillow (8.1.1-1) unstable; urgency=high . * New upstream version. - Use more specific regex chars to prevent ReDoS. CVE-2021-25292. - Fix OOB Read in TiffDecode.c, and check the tile validity before reading. CVE-2021-25291. - Fix negative size read in TiffDecode.c. CVE-2021-25290. - Fix OOB read in SgiRleDecode.c. CVE-2021-25293. - Incorrect error code checking in TiffDecode.c. CVE-2021-25289. | ||||
* | Track fixed version for CVE-2021-20230/stunnel4 | Salvatore Bonaccorso | 2021-03-04 | 1 | -1/+1 |
| | |||||
* | NFUs | Moritz Muehlenhoff | 2021-03-03 | 2 | -13/+16 |
| | | | | pillow ignored | ||||
* | Proces some more NFUs | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 |
| | |||||
* | Add new pillow issues | Salvatore Bonaccorso | 2021-03-03 | 1 | -3/+3 |
| | |||||
* | Add CVE-2021-27927/zabbix | Salvatore Bonaccorso | 2021-03-03 | 1 | -1/+2 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-03 | 2 | -4/+4 |
| | |||||
* | Remove notes from CVE-2021-3419 (withdrawn by its CNA) | Salvatore Bonaccorso | 2021-03-03 | 1 | -5/+1 |
| | |||||
* | CVE-2020-28498/node-elliptic fixed in unstable | Salvatore Bonaccorso | 2021-03-03 | 1 | -1/+1 |
| | |||||
* | automatic update | security tracker role | 2021-03-03 | 2 | -79/+103 |
| | |||||
* | qemu, newlib bugs | Moritz Mühlenhoff | 2021-03-03 | 2 | -10/+18 |
| | |||||
* | add libnewlib-nano to affected source packages | Moritz Mühlenhoff | 2021-03-03 | 1 | -1/+3 |
| | |||||
* | CVE-2018-16873/golang: fix my inconsistent sort | Sylvain Beucler | 2021-03-03 | 1 | -1/+1 |
| | |||||
* | Add reference for CVE-2021-23334 | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 |
| | |||||
* | newlib issue affects picolibc | Moritz Muehlenhoff | 2021-03-03 | 1 | -1/+3 |
| | |||||
* | qemu n/a for released suites | Moritz Muehlenhoff | 2021-03-03 | 1 | -3/+3 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-03 | 2 | -15/+15 |
| | |||||
* | Add two glpi issues | Salvatore Bonaccorso | 2021-03-03 | 1 | -2/+6 |
| | |||||
* | Add CVE-2021-3420/newlib | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+3 |
| | |||||
* | automatic update | security tracker role | 2021-03-03 | 2 | -41/+42 |
| | |||||
* | Add note for CVE-2021-3408 (duplicate of CVE-2021-20233) | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 |
| | |||||
* | Add CVE-2021-20263/qemu | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+5 |
| | |||||
* | Add CVE-2021-20262 | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 |
| | |||||
* | Add CVE-2020-25715/dogtag-pki | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+3 |
| | |||||
* | Track upstream commit for CVE-2021-27645/glibc | Salvatore Bonaccorso | 2021-03-03 | 1 | -0/+1 |
| | |||||
* | new chromium issues | Moritz Muehlenhoff | 2021-03-02 | 1 | -0/+64 |
| | |||||
* | Mark CVE-2020-1936 as NFU | Salvatore Bonaccorso | 2021-03-02 | 1 | -1/+1 |
| | |||||
* | Process some NFUs | Salvatore Bonaccorso | 2021-03-02 | 1 | -7/+7 |
| | |||||
* | Process NFUs | Salvatore Bonaccorso | 2021-03-02 | 2 | -5/+5 |
| | |||||
* | automatic update | security tracker role | 2021-03-02 | 2 | -30/+66 |
| | |||||
* | Mark CVE-2021-21330/python-aiohttp as not-affected for stretch | Utkarsh Gupta | 2021-03-03 | 1 | -0/+1 |
| | |||||
* | grub2 issues fixed in unstable | Salvatore Bonaccorso | 2021-03-02 | 2 | -7/+7 |
| | |||||
* | Add tracking of new grub2 issues | Salvatore Bonaccorso | 2021-03-02 | 2 | -0/+7 |
| | |||||
* | CVE-2017-15041/golang: reference regression | Sylvain Beucler | 2021-03-02 | 1 | -2/+3 |
| | |||||
* | salt fixed in sid | Moritz Muehlenhoff | 2021-03-02 | 2 | -10/+10 |
| | |||||
* | Track linux fixed via unstable | Salvatore Bonaccorso | 2021-03-02 | 2 | -5/+5 |
| | |||||
* | Add spip entry for stretch for temporary entry without CVE | Salvatore Bonaccorso | 2021-03-02 | 1 | -0/+1 |
| |