From f4c135d01ebacd4f69abc7f34e19ce2af0d49d07 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?K=C3=A5re=20Thor=20Olsen?= <kaare@nightcall.dk>
Date: Tue, 15 Sep 2020 08:02:29 +0200
Subject: [SECURITY] [DSA 4763-1] teeworlds security update

---
 english/security/2020/dsa-4763.data | 13 +++++++++++++
 english/security/2020/dsa-4763.wml  | 20 ++++++++++++++++++++
 2 files changed, 33 insertions(+)
 create mode 100644 english/security/2020/dsa-4763.data
 create mode 100644 english/security/2020/dsa-4763.wml

diff --git a/english/security/2020/dsa-4763.data b/english/security/2020/dsa-4763.data
new file mode 100644
index 00000000000..d06ce774a83
--- /dev/null
+++ b/english/security/2020/dsa-4763.data
@@ -0,0 +1,13 @@
+<define-tag pagetitle>DSA-4763-1 teeworlds</define-tag>
+<define-tag report_date>2020-9-14</define-tag>
+<define-tag secrefs>CVE-2020-12066</define-tag>
+<define-tag packages>teeworlds</define-tag>
+<define-tag isvulnerable>yes</define-tag>
+<define-tag fixed>yes</define-tag>
+<define-tag fixed-section>no</define-tag>
+
+#use wml::debian::security
+
+
+
+</dl>
diff --git a/english/security/2020/dsa-4763.wml b/english/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..827feac5d4b
--- /dev/null
+++ b/english/security/2020/dsa-4763.wml
@@ -0,0 +1,20 @@
+<define-tag description>security update</define-tag>
+<define-tag moreinfo>
+<p>It was discovered that insufficient sanitising of received network
+packets in the game server of Teeworlds, an online multi-player platform
+2D shooter, could result in denial of service.</p>
+
+<p>For the stable distribution (buster), this problem has been fixed in
+version 0.7.2-5+deb10u1.</p>
+
+<p>We recommend that you upgrade your teeworlds packages.</p>
+
+<p>For the detailed security status of teeworlds please refer to
+its security tracker page at:
+<a href="https://security-tracker.debian.org/tracker/teeworlds">\
+https://security-tracker.debian.org/tracker/teeworlds</a></p>
+</define-tag>
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
+# $Id: $
-- 
cgit v1.2.3


From 4e91e99240d210f09b4a47789ab702a95f192cb0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?K=C3=A5re=20Thor=20Olsen?= <kaare@nightcall.dk>
Date: Tue, 15 Sep 2020 08:04:23 +0200
Subject: Initial translation

---
 danish/security/2020/dsa-4763.wml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 danish/security/2020/dsa-4763.wml

diff --git a/danish/security/2020/dsa-4763.wml b/danish/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..29fcf5ef6b8
--- /dev/null
+++ b/danish/security/2020/dsa-4763.wml
@@ -0,0 +1,20 @@
+#use wml::debian::translation-check translation="f4c135d01ebacd4f69abc7f34e19ce2af0d49d07" mindelta="1"
+<define-tag description>sikkerhedsopdatering</define-tag>
+<define-tag moreinfo>
+<p>Man opdagede at utilstrækkelig rensning af modtagne netværkspakker i 
+Teeworlds' spilserver, et online-2-D-platformskydespil til flere personer, 
+kunne medføre lammelsesangreb.</p>
+
+<p>I den stabile distribution (buster), er dette problem rettet i
+version 0.7.2-5+deb10u1.</p>
+
+<p>Vi anbefaler at du opgraderer dine teeworlds-pakker.</p>
+
+<p>For detaljeret sikkerhedsstatus vedrørende teeworlds, se
+dens sikkerhedssporingsside på:
+<a href="https://security-tracker.debian.org/tracker/teeworlds">\
+https://security-tracker.debian.org/tracker/teeworlds</a></p>
+</define-tag>
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
-- 
cgit v1.2.3


From aeb3b118d7c9ef40d654b91095d7c1d500466a6f Mon Sep 17 00:00:00 2001
From: Jean-Pierre Giraud <jean-pierregiraud@neuf.fr>
Date: Tue, 15 Sep 2020 09:54:38 +0200
Subject: (fr) DSA 4763, initial translation

---
 french/security/2020/dsa-4763.wml | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 french/security/2020/dsa-4763.wml

diff --git a/french/security/2020/dsa-4763.wml b/french/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..34db9da8cf0
--- /dev/null
+++ b/french/security/2020/dsa-4763.wml
@@ -0,0 +1,21 @@
+#use wml::debian::translation-check translation="f4c135d01ebacd4f69abc7f34e19ce2af0d49d07" maintainer="Jean-Pierre Giraud"
+<define-tag description>Mise à jour de sécurité</define-tag>
+<define-tag moreinfo>
+<p>Un nettoyage insuffisant des paquets réseau reçus dans le serveur de jeu
+de Teeworlds, plateforme 2D multijoueurs pour le jeu de tir en ligne,
+pourrait avoir pour conséquence un déni de service.</p>
+
+<p>Pour la distribution stable (Buster), ce problème a été corrigé dans la
+version 0.7.2-5+deb10u1.</p>
+
+<p>Nous vous recommandons de mettre à jour vos paquets teeworlds.</p>
+
+<p>Pour disposer d'un état détaillé sur la sécurité de teeworlds, veuillez
+consulter sa page de suivi de sécurité à l'adresse :
+<a href="https://security-tracker.debian.org/tracker/teeworlds">\
+https://security-tracker.debian.org/tracker/teeworlds</a>.</p>
+</define-tag>
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
+# $Id: $
-- 
cgit v1.2.3


From 862b7ff679ee67b1d251810af992fb3a41f84a49 Mon Sep 17 00:00:00 2001
From: Jean-Pierre Giraud <jean-pierregiraud@neuf.fr>
Date: Tue, 15 Sep 2020 08:04:57 +0000
Subject: (fr) dsa-4760.wml, typo

---
 french/security/2020/dsa-4760.wml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/french/security/2020/dsa-4760.wml b/french/security/2020/dsa-4760.wml
index 82374edf033..4eb9fdac3d2 100644
--- a/french/security/2020/dsa-4760.wml
+++ b/french/security/2020/dsa-4760.wml
@@ -9,7 +9,7 @@
 <li><a href="https://security-tracker.debian.org/tracker/CVE-2020-12829">CVE-2020-12829</a>
 
 <p>Un dépassement d'entier dans le périphérique d'affichage sm501 peut
-provoquer un  déni de service.</p></li>
+provoquer un déni de service.</p></li>
 
 <li><a href="https://security-tracker.debian.org/tracker/CVE-2020-14364">CVE-2020-14364</a>
 
-- 
cgit v1.2.3


From bf3bfe54e200fdc15031a695f1a95e2a5f4333b3 Mon Sep 17 00:00:00 2001
From: Lev Lamberov <dogsleg@debian.org>
Date: Tue, 15 Sep 2020 14:23:21 +0500
Subject: (Russian) Initial translation

---
 russian/security/2020/dsa-4763.wml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 russian/security/2020/dsa-4763.wml

diff --git a/russian/security/2020/dsa-4763.wml b/russian/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..fadbf826b12
--- /dev/null
+++ b/russian/security/2020/dsa-4763.wml
@@ -0,0 +1,20 @@
+#use wml::debian::translation-check translation="f4c135d01ebacd4f69abc7f34e19ce2af0d49d07" mindelta="1" maintainer="Lev Lamberov"
+<define-tag description>обновление безопасности</define-tag>
+<define-tag moreinfo>
+<p>Было обнаружено, что недостаточная очистка получаемых по сети
+пакетов в игровом сервере Teeworlds, многопользовательском онлайн платформенном
+2D-шутере, может приводить к отказу в обслуживании.</p>
+
+<p>В стабильном выпуске (buster) эта проблема была исправлена в
+версии 0.7.2-5+deb10u1.</p>
+
+<p>Рекомендуется обновить пакеты teeworlds.</p>
+
+<p>С подробным статусом поддержки безопасности teeworlds можно ознакомиться на
+соответствующей странице отслеживания безопасности по адресу
+<a href="https://security-tracker.debian.org/tracker/teeworlds">\
+https://security-tracker.debian.org/tracker/teeworlds</a></p>
+</define-tag>
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
-- 
cgit v1.2.3


From 943fdae171ceaeb4a44d08b77255762821cb5331 Mon Sep 17 00:00:00 2001
From: Chris Lamb <lamby@debian.org>
Date: Tue, 15 Sep 2020 12:24:15 +0100
Subject: Add DLA-2374-1.

---
 english/lts/security/2020/dla-2374.data |  9 +++++++++
 english/lts/security/2020/dla-2374.wml  | 36 +++++++++++++++++++++++++++++++++
 2 files changed, 45 insertions(+)
 create mode 100644 english/lts/security/2020/dla-2374.data
 create mode 100644 english/lts/security/2020/dla-2374.wml

diff --git a/english/lts/security/2020/dla-2374.data b/english/lts/security/2020/dla-2374.data
new file mode 100644
index 00000000000..b5cdc3593e3
--- /dev/null
+++ b/english/lts/security/2020/dla-2374.data
@@ -0,0 +1,9 @@
+<define-tag pagetitle>DLA-2374-1 gnome-shell</define-tag>
+<define-tag report_date>2020-09-15</define-tag>
+<define-tag secrefs>CVE-2020-17489</define-tag>
+<define-tag packages>gnome-shell</define-tag>
+<define-tag isvulnerable>yes</define-tag>
+<define-tag fixed>yes</define-tag>
+<define-tag fixed-section>no</define-tag>
+
+#use wml::debian::security
diff --git a/english/lts/security/2020/dla-2374.wml b/english/lts/security/2020/dla-2374.wml
new file mode 100644
index 00000000000..e0cd5a7fea3
--- /dev/null
+++ b/english/lts/security/2020/dla-2374.wml
@@ -0,0 +1,36 @@
+<define-tag description>LTS security update</define-tag>
+<define-tag moreinfo>
+
+<p>It was discovered that there was an issue around revealing passwords in the
+<tt>gnome-shell</tt> component of the GNOME desktop.</p>
+
+<p>In certain configurations, when logging out of an account the password box
+from the login dialog could reappear with the password visible in
+cleartext.</p>
+
+<ul>
+
+<li><a href="https://security-tracker.debian.org/tracker/CVE-2020-17489">CVE-2020-17489</a>
+
+    <p>An issue was discovered in certain configurations of GNOME gnome-shell
+    through 3.36.4. When logging out of an account, the password box from the
+    login dialog reappears with the password still visible. If the user had
+    decided to have the password shown in cleartext at login time, it is then
+    visible for a brief moment upon a logout. (If the password were never shown
+    in cleartext, only the password length is revealed.)</p></li>
+
+</ul>
+
+<p>For Debian 9 <q>Stretch</q>, these problems have been fixed in version
+3.22.3-3+deb9u1.</p>
+
+<p>We recommend that you upgrade your gnome-shell packages.</p>
+
+<p>Further information about Debian LTS security advisories, how to apply
+these updates to your system and frequently asked questions can be
+found at: <a href="https://wiki.debian.org/LTS">https://wiki.debian.org/LTS</a></p>
+</define-tag>
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/lts/security/2020/dla-2374.data"
+# $Id: $
-- 
cgit v1.2.3