From f4c135d01ebacd4f69abc7f34e19ce2af0d49d07 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?K=C3=A5re=20Thor=20Olsen?=
Date: Tue, 15 Sep 2020 08:02:29 +0200
Subject: [SECURITY] [DSA 4763-1] teeworlds security update
---
english/security/2020/dsa-4763.data | 13 +++++++++++++
english/security/2020/dsa-4763.wml | 20 ++++++++++++++++++++
2 files changed, 33 insertions(+)
create mode 100644 english/security/2020/dsa-4763.data
create mode 100644 english/security/2020/dsa-4763.wml
diff --git a/english/security/2020/dsa-4763.data b/english/security/2020/dsa-4763.data
new file mode 100644
index 00000000000..d06ce774a83
--- /dev/null
+++ b/english/security/2020/dsa-4763.data
@@ -0,0 +1,13 @@
+DSA-4763-1 teeworlds
+2020-9-14
+CVE-2020-12066
+teeworlds
+yes
+yes
+no
+
+#use wml::debian::security
+
+
+
+
diff --git a/english/security/2020/dsa-4763.wml b/english/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..827feac5d4b
--- /dev/null
+++ b/english/security/2020/dsa-4763.wml
@@ -0,0 +1,20 @@
+security update
+
+It was discovered that insufficient sanitising of received network
+packets in the game server of Teeworlds, an online multi-player platform
+2D shooter, could result in denial of service.
+
+For the stable distribution (buster), this problem has been fixed in
+version 0.7.2-5+deb10u1.
+
+We recommend that you upgrade your teeworlds packages.
+
+For the detailed security status of teeworlds please refer to
+its security tracker page at:
+\
+https://security-tracker.debian.org/tracker/teeworlds
+
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
+# $Id: $
--
cgit v1.2.3
From 4e91e99240d210f09b4a47789ab702a95f192cb0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?K=C3=A5re=20Thor=20Olsen?=
Date: Tue, 15 Sep 2020 08:04:23 +0200
Subject: Initial translation
---
danish/security/2020/dsa-4763.wml | 20 ++++++++++++++++++++
1 file changed, 20 insertions(+)
create mode 100644 danish/security/2020/dsa-4763.wml
diff --git a/danish/security/2020/dsa-4763.wml b/danish/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..29fcf5ef6b8
--- /dev/null
+++ b/danish/security/2020/dsa-4763.wml
@@ -0,0 +1,20 @@
+#use wml::debian::translation-check translation="f4c135d01ebacd4f69abc7f34e19ce2af0d49d07" mindelta="1"
+sikkerhedsopdatering
+
+Man opdagede at utilstrækkelig rensning af modtagne netværkspakker i
+Teeworlds' spilserver, et online-2-D-platformskydespil til flere personer,
+kunne medføre lammelsesangreb.
+
+I den stabile distribution (buster), er dette problem rettet i
+version 0.7.2-5+deb10u1.
+
+Vi anbefaler at du opgraderer dine teeworlds-pakker.
+
+For detaljeret sikkerhedsstatus vedrørende teeworlds, se
+dens sikkerhedssporingsside på:
+\
+https://security-tracker.debian.org/tracker/teeworlds
+
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
--
cgit v1.2.3
From aeb3b118d7c9ef40d654b91095d7c1d500466a6f Mon Sep 17 00:00:00 2001
From: Jean-Pierre Giraud
Date: Tue, 15 Sep 2020 09:54:38 +0200
Subject: (fr) DSA 4763, initial translation
---
french/security/2020/dsa-4763.wml | 21 +++++++++++++++++++++
1 file changed, 21 insertions(+)
create mode 100644 french/security/2020/dsa-4763.wml
diff --git a/french/security/2020/dsa-4763.wml b/french/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..34db9da8cf0
--- /dev/null
+++ b/french/security/2020/dsa-4763.wml
@@ -0,0 +1,21 @@
+#use wml::debian::translation-check translation="f4c135d01ebacd4f69abc7f34e19ce2af0d49d07" maintainer="Jean-Pierre Giraud"
+Mise à jour de sécurité
+
+Un nettoyage insuffisant des paquets réseau reçus dans le serveur de jeu
+de Teeworlds, plateforme 2D multijoueurs pour le jeu de tir en ligne,
+pourrait avoir pour conséquence un déni de service.
+
+Pour la distribution stable (Buster), ce problème a été corrigé dans la
+version 0.7.2-5+deb10u1.
+
+Nous vous recommandons de mettre à jour vos paquets teeworlds.
+
+Pour disposer d'un état détaillé sur la sécurité de teeworlds, veuillez
+consulter sa page de suivi de sécurité à l'adresse :
+\
+https://security-tracker.debian.org/tracker/teeworlds.
+
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
+# $Id: $
--
cgit v1.2.3
From 862b7ff679ee67b1d251810af992fb3a41f84a49 Mon Sep 17 00:00:00 2001
From: Jean-Pierre Giraud
Date: Tue, 15 Sep 2020 08:04:57 +0000
Subject: (fr) dsa-4760.wml, typo
---
french/security/2020/dsa-4760.wml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/french/security/2020/dsa-4760.wml b/french/security/2020/dsa-4760.wml
index 82374edf033..4eb9fdac3d2 100644
--- a/french/security/2020/dsa-4760.wml
+++ b/french/security/2020/dsa-4760.wml
@@ -9,7 +9,7 @@
CVE-2020-12829
Un dépassement d'entier dans le périphérique d'affichage sm501 peut
-provoquer un déni de service.
+provoquer un déni de service.
CVE-2020-14364
--
cgit v1.2.3
From bf3bfe54e200fdc15031a695f1a95e2a5f4333b3 Mon Sep 17 00:00:00 2001
From: Lev Lamberov
Date: Tue, 15 Sep 2020 14:23:21 +0500
Subject: (Russian) Initial translation
---
russian/security/2020/dsa-4763.wml | 20 ++++++++++++++++++++
1 file changed, 20 insertions(+)
create mode 100644 russian/security/2020/dsa-4763.wml
diff --git a/russian/security/2020/dsa-4763.wml b/russian/security/2020/dsa-4763.wml
new file mode 100644
index 00000000000..fadbf826b12
--- /dev/null
+++ b/russian/security/2020/dsa-4763.wml
@@ -0,0 +1,20 @@
+#use wml::debian::translation-check translation="f4c135d01ebacd4f69abc7f34e19ce2af0d49d07" mindelta="1" maintainer="Lev Lamberov"
+обновление безопасности
+
+Было обнаружено, что недостаточная очистка получаемых по сети
+пакетов в игровом сервере Teeworlds, многопользовательском онлайн платформенном
+2D-шутере, может приводить к отказу в обслуживании.
+
+В стабильном выпуске (buster) эта проблема была исправлена в
+версии 0.7.2-5+deb10u1.
+
+Рекомендуется обновить пакеты teeworlds.
+
+С подробным статусом поддержки безопасности teeworlds можно ознакомиться на
+соответствующей странице отслеживания безопасности по адресу
+\
+https://security-tracker.debian.org/tracker/teeworlds
+
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/security/2020/dsa-4763.data"
--
cgit v1.2.3
From 943fdae171ceaeb4a44d08b77255762821cb5331 Mon Sep 17 00:00:00 2001
From: Chris Lamb
Date: Tue, 15 Sep 2020 12:24:15 +0100
Subject: Add DLA-2374-1.
---
english/lts/security/2020/dla-2374.data | 9 +++++++++
english/lts/security/2020/dla-2374.wml | 36 +++++++++++++++++++++++++++++++++
2 files changed, 45 insertions(+)
create mode 100644 english/lts/security/2020/dla-2374.data
create mode 100644 english/lts/security/2020/dla-2374.wml
diff --git a/english/lts/security/2020/dla-2374.data b/english/lts/security/2020/dla-2374.data
new file mode 100644
index 00000000000..b5cdc3593e3
--- /dev/null
+++ b/english/lts/security/2020/dla-2374.data
@@ -0,0 +1,9 @@
+DLA-2374-1 gnome-shell
+2020-09-15
+CVE-2020-17489
+gnome-shell
+yes
+yes
+no
+
+#use wml::debian::security
diff --git a/english/lts/security/2020/dla-2374.wml b/english/lts/security/2020/dla-2374.wml
new file mode 100644
index 00000000000..e0cd5a7fea3
--- /dev/null
+++ b/english/lts/security/2020/dla-2374.wml
@@ -0,0 +1,36 @@
+LTS security update
+
+
+It was discovered that there was an issue around revealing passwords in the
+gnome-shell component of the GNOME desktop.
+
+In certain configurations, when logging out of an account the password box
+from the login dialog could reappear with the password visible in
+cleartext.
+
+
+
+- CVE-2020-17489
+
+
An issue was discovered in certain configurations of GNOME gnome-shell
+ through 3.36.4. When logging out of an account, the password box from the
+ login dialog reappears with the password still visible. If the user had
+ decided to have the password shown in cleartext at login time, it is then
+ visible for a brief moment upon a logout. (If the password were never shown
+ in cleartext, only the password length is revealed.)
+
+
+
+For Debian 9 Stretch
, these problems have been fixed in version
+3.22.3-3+deb9u1.
+
+We recommend that you upgrade your gnome-shell packages.
+
+Further information about Debian LTS security advisories, how to apply
+these updates to your system and frequently asked questions can be
+found at: https://wiki.debian.org/LTS
+
+
+# do not modify the following line
+#include "$(ENGLISHDIR)/lts/security/2020/dla-2374.data"
+# $Id: $
--
cgit v1.2.3