[Git][security-tracker-team/security-tracker][master] Add CVE-2019-19450/python-reportlab

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f16c0aee by Salvatore Bonaccorso at 2023-09-26T08:49:08+02:00 Add CVE-2019-19450/python-reportlab - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Reference followup commit for CVE-2023-20588

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: c558f01e by Salvatore Bonaccorso at 2023-09-26T05:46:59+02:00 Reference followup commit for CVE-2023-20588 - - - - - 1 changed file: - data/CVE/list Changes: =

[Git][security-tracker-team/security-tracker][master] Add a few CVE for DLA3457-1

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker Commits: 586c185e by Bastien Roucariès at 2023-09-25T22:25:09+00:00 Add a few CVE for DLA3457-1 - - - - - 2 changed files: - data/CVE/list - data/DLA/list Changes: ===

[Git][security-tracker-team/security-tracker][master] bugnums

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 553c4195 by Moritz Muehlenhoff at 2023-09-25T23:49:51+02:00 bugnums - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list ==

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3585-1 for exempi

Bastien Roucariès pushed to branch master at Debian Security Tracker / security-tracker Commits: a5903662 by Bastien Roucariès at 2023-09-25T21:18:35+00:00 Reserve DLA-3585-1 for exempi - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/dla-needed.txt Changes: ===

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 2d36cf9c by Salvatore Bonaccorso at 2023-09-25T22:52:41+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-5158/linux

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 69c1b816 by Salvatore Bonaccorso at 2023-09-25T22:47:13+02:00 Add CVE-2023-5158/linux - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/lis

[Git][security-tracker-team/security-tracker][master] Reference discussion thread for CVE-2023-5156

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d94a286e by Salvatore Bonaccorso at 2023-09-25T22:41:35+02:00 Reference discussion thread for CVE-2023-5156 - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3584-1 for netatalk

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker Commits: 9efbf153 by Markus Koschany at 2023-09-25T22:40:15+02:00 Reserve DLA-3584-1 for netatalk - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: =

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-5156/glibc (and add note to CVE-2023-4806)

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: f2074d6b by Salvatore Bonaccorso at 2023-09-25T22:37:23+02:00 Add CVE-2023-5156/glibc (and add note to CVE-2023-4806) - - - - - 1 changed file: - data/CVE/list Changes: ==

[Git][security-tracker-team/security-tracker][master] Reserve DSA number for lldpd update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: d2597db1 by Salvatore Bonaccorso at 2023-09-25T22:18:38+02:00 Reserve DSA number for lldpd update - - - - - 2 changed files: - data/DSA/list - data/dsa-needed.txt Changes: ===

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: aac4e7f0 by Salvatore Bonaccorso at 2023-09-25T22:15:35+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 1dd42851 by security tracker role at 2023-09-25T20:12:14+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-35357

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: a3ae2256 by Salvatore Bonaccorso at 2023-09-25T21:05:39+02:00 Add Debian bug reference for CVE-2020-35357 - - - - - 1 changed file: - data/CVE/list Changes: ==

[Git][security-tracker-team/security-tracker][master] Add upstream commits for CVE-2023-43669

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 0ccddbdd by Salvatore Bonaccorso at 2023-09-25T20:54:44+02:00 Add upstream commits for CVE-2023-43669 - - - - - 1 changed file: - data/CVE/list Changes: ==

[Git][security-tracker-team/security-tracker][master] Add CVE-2023-42755/linux

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6fbbb107 by Salvatore Bonaccorso at 2023-09-25T20:28:44+02:00 Add CVE-2023-42755/linux - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/li

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3583-1 for glib2.0

. (bunk) -- -glib2.0 (Santiago) - NOTE: 20230612: Added by Front-Desk (apo) - NOTE: 20230710: WIP (santiago) - NOTE: 20230724: buster should be ready. need if it's possible to run same reporter's fuzz test - NOTE: 20230807: idem. - NOTE: 20230820: asked for review/test. - NOTE

[Git][security-tracker-team/security-tracker][master] Reclaim again glib2.0. Currently preparing the upload

: 20230710: WIP (santiago) NOTE: 20230724: buster should be ready. need if it's possible to run same reporter's fuzz test NOTE: 20230807: idem. NOTE: 20230820: asked for review/test. + NOTE: 20230925: preparing the upload for today -- i2p NOTE: 20230809: Added by Front-Desk (Beuc)

[Git][security-tracker-team/security-tracker][master] semi-automatic unclaim after 2 weeks of inactivity

Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker Commits: 37a6f50b by Santiago Ruano Rincón at 2023-09-25T09:55:42-03:00 semi-automatic unclaim after 2 weeks of inactivity Signed-off-by: Santiago Ruano Rincón - - - - - 1 changed fi

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3582-1 for ghostscript

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: 0fca495d by Abhijith PA at 2023-09-25T18:14:23+05:30 Reserve DLA-3582-1 for ghostscript - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: ==

[Git][security-tracker-team/security-tracker][master] gitlab fixed in sid

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 401792b2 by Moritz Muehlenhoff at 2023-09-25T13:48:56+02:00 gitlab fixed in sid - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list ==

[Git][security-tracker-team/security-tracker][master] add references

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 2b6157da by Moritz Muehlenhoff at 2023-09-25T13:45:15+02:00 add references - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list ===

[Git][security-tracker-team/security-tracker][master] LTS: claim ncurses in dla-needed.txt

Sean Whitton pushed to branch master at Debian Security Tracker / security-tracker Commits: b9adb426 by Sean Whitton at 2023-09-25T11:17:03+01:00 LTS: claim ncurses in dla-needed.txt - - - - - 1 changed file: - data/dla-needed.txt Changes: = data/dla-

[Git][security-tracker-team/security-tracker][master] LTS: unclaim open-vm-tools in dla-needed.txt

- -open-vm-tools (Sean Whitton) +open-vm-tools NOTE: 20230907: Added by Front-Desk (lamby) + NOTE: 20230925: Prepared the update in git, but don't have an OpenVZ host to + NOTE: 20230925: hand for testing, and more efficient for someone with one + NOTE: 20230925: already set up to

[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 6aeb5b97 by Salvatore Bonaccorso at 2023-09-25T11:41:02+02:00 Process some NFUs - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] Adjust comment ofr additional CVE-2020-21890 commit

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: dd929c35 by Salvatore Bonaccorso at 2023-09-25T11:34:47+02:00 Adjust comment ofr additional CVE-2020-21890 commit As the fixing commit is 494eeedf73d13fac5710e56f3a8fb2e7e2379d73, but the other

[Git][security-tracker-team/security-tracker][master] Reserve DLA-3581-1 for flac

Sean Whitton pushed to branch master at Debian Security Tracker / security-tracker Commits: f6a3d34d by Sean Whitton at 2023-09-25T10:18:15+01:00 Reserve DLA-3581-1 for flac - - - - - 2 changed files: - data/DLA/list - data/dla-needed.txt Changes: = d

[Git][security-tracker-team/security-tracker][master] data/dla-needed.txt: Claim puma

-needed.txt = @@ -178,7 +178,7 @@ prometheus-alertmanager NOTE: 20230925: Added by Front-Desk (apo) NOTE: 20230925: Vulnerable code is in ui/app/src/Views/AlertList/AlertView.elm -- -puma +puma (Abhijith PA) NOTE: 20230925: Added by Front-Desk (apo

[Git][security-tracker-team/security-tracker][master] yt-dlp n/a

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 21683ec1 by Moritz Muehlenhoff at 2023-09-25T10:50:19+02:00 yt-dlp n/a - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list ===

[Git][security-tracker-team/security-tracker][master] 2 commits: Upstream have changed and refactored function `finish_copydevice`

Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker Commits: 5a34f392 by Abhijith PA at 2023-09-25T14:01:46+05:30 Upstream have changed and refactored function `finish_copydevice` Backporting to 9.27 is not worth when the IjsServer security risk is documented. -

[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker Commits: 60c7ef97 by security tracker role at 2023-09-25T08:11:53+00:00 automatic update - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE/list

[Git][security-tracker-team/security-tracker][master] nvidia-cuda-toolkit fixed in experimental

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 34de7ad9 by Moritz Muehlenhoff at 2023-09-25T09:55:26+02:00 nvidia-cuda-toolkit fixed in experimental - - - - - 1 changed file: - data/CVE/list Changes:

[Git][security-tracker-team/security-tracker][master] some gitlab issues fixed in sid

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker Commits: 38e869fc by Moritz Muehlenhoff at 2023-09-25T09:52:23+02:00 some gitlab issues fixed in sid - - - - - 1 changed file: - data/CVE/list Changes: = data/CVE