Log of /bin

---

Revision 22582 - Directory Listing
Modified Wed Jun 12 18:39:52 2013 UTC (6 days, 10 hours ago) by carnil

change svn://svn.debian.org/ to svn://anonscm.debian.org

---

Revision 22512 - Directory Listing
Modified Thu Jun 6 04:04:44 2013 UTC (13 days, 1 hour ago) by pabs

EDB expects CVE numbers without the CVE- prefix

---

Revision 22511 - Directory Listing
Modified Thu Jun 6 03:47:22 2013 UTC (13 days, 1 hour ago) by pabs

Link to OSVDB and EDB search pages for the CVE

---

Revision 22184 - Directory Listing
Modified Mon May 6 09:11:39 2013 UTC (6 weeks, 1 day ago) by atomo64-guest

Re-add links to oldstable reports

---

Revision 22168 - Directory Listing
Modified Sun May 5 07:48:49 2013 UTC (6 weeks, 2 days ago) by thijs

squeeze=oldstable, wheezy=stable, jessie=testing

---

Revision 21569 - Directory Listing
Modified Sun Mar 10 19:58:58 2013 UTC (3 months, 1 week ago) by geissert

Oh and bump copyright years

---

Revision 21568 - Directory Listing
Modified Sun Mar 10 19:52:59 2013 UTC (3 months, 1 week ago) by geissert

Drop leading blank space in CVE and bug numbers list

Additionally, "support" multiple bug numbers by correctly formatting
and generating a list of them.

---

Revision 21567 - Directory Listing
Modified Sun Mar 10 19:48:34 2013 UTC (3 months, 1 week ago) by geissert

Allow CVE ids and bug numbers to be passed in any order

No need of passing them as a list in a single argument.

---

Revision 21342 - Directory Listing
Modified Tue Feb 19 19:27:42 2013 UTC (3 months, 4 weeks ago) by geissert

When passing multiple CVE ids, generate a list of them

The generated CVE listing is more or less already followed by almost
everybody except fw, who's style is slightly different (no empty line
after the id and tabs instead of blanks.)

---

Revision 21317 - Directory Listing
Modified Sun Feb 17 18:27:17 2013 UTC (3 months, 4 weeks ago) by geissert

Download mitre's and nist's data files via https

Debian-related files are still not checked for signatures, however.

---

Revision 21301 - Directory Listing
Modified Sat Feb 16 17:19:27 2013 UTC (4 months ago) by thijs

remove 'experimental' from the tracker: the unstable versions we track
cannot be applied there and it leads to false claims in the tracker
pages about the affectedness of packages in experimental.

---

Revision 20565 - Directory Listing
Modified Wed Nov 28 02:37:52 2012 UTC (6 months, 2 weeks ago) by pabs

Fix typo :(

---

Revision 20564 - Directory Listing
Modified Wed Nov 28 02:28:50 2012 UTC (6 months, 2 weeks ago) by pabs

Link to the oss-security mailing list too.

Use marc.info since the other archives have either
broken searching or no searching.

---

Revision 20430 - Directory Listing
Modified Thu Nov 1 01:48:00 2012 UTC (7 months, 2 weeks ago) by geissert

Update the script usage information

---

Revision 20429 - Directory Listing
Modified Thu Nov 1 01:32:50 2012 UTC (7 months, 2 weeks ago) by geissert

check and automagically cleanup the vulnerability summary

---

Revision 20168 - Directory Listing
Modified Sat Sep 15 00:38:44 2012 UTC (9 months ago) by geissert

Adjust "this problem has" to "these problems have" when fixing >1 issues

---

Revision 20167 - Directory Listing
Modified Sat Sep 15 00:27:05 2012 UTC (9 months ago) by geissert

Fix the Subject automagically when releasing a regression update

---

Revision 20166 - Directory Listing
Modified Sat Sep 15 00:22:04 2012 UTC (9 months ago) by geissert

Exclude 'SQL' from the spelling mistakes report

---

Revision 20102 - Directory Listing
Modified Wed Sep 5 18:58:39 2012 UTC (9 months, 1 week ago) by geissert

Code cleanup

---

Revision 20099 - Directory Listing
Modified Wed Sep 5 17:50:24 2012 UTC (9 months, 1 week ago) by geissert

Use colours on notice, warning, and error messages

It makes them easier to notice.

---

Revision 20098 - Directory Listing
Modified Wed Sep 5 17:37:28 2012 UTC (9 months, 1 week ago) by geissert

Check the vulnerability description for spelling mistakes

Supported spell-checkers: aspell, enchant

---

Revision 19986 - Directory Listing
Modified Mon Aug 20 02:45:35 2012 UTC (9 months, 4 weeks ago) by geissert

Ignore unimportant issues

---

Revision 19985 - Directory Listing
Modified Mon Aug 20 02:21:33 2012 UTC (9 months, 4 weeks ago) by geissert

Add --no-blanks option and default to not specifying a Version

---

Revision 19984 - Directory Listing
Modified Mon Aug 20 01:51:00 2012 UTC (9 months, 4 weeks ago) by geissert

Reword template now that issues without CVE ids may be reported

---

Revision 19983 - Directory Listing
Modified Mon Aug 20 01:41:26 2012 UTC (9 months, 4 weeks ago) by geissert

Allow report-vuln to report issues without CVE ids

USAGE: bin/report-vuln src-pkg CVE-2012-XXXX

Specify as many CVE-less entries as the number of issues to report.
E.g. to report two issues without CVE id against foo:
bin/report-vuln foo CVE-2012-XXXX CVE-2012-XXXX

NOTE: Make sure you add a description to the CVE/list entries!

---

Revision 19982 - Directory Listing
Modified Mon Aug 20 00:24:02 2012 UTC (9 months, 4 weeks ago) by geissert

Use the temporary description if the id is still RESERVED

---

Revision 19639 - Directory Listing
Modified Mon Jul 2 22:32:53 2012 UTC (11 months, 2 weeks ago) by geissert

The Bugnum field shouldn't contain the hash character

---

Revision 19273 - Directory Listing
Modified Sat May 19 11:10:15 2012 UTC (13 months ago) by pabs

Fix or drop links that changed or broke with the alioth transition.

Thanks to Paul Gevers (Elbrus) for noticing.

---

Revision 19270 - Directory Listing
Modified Fri May 18 01:25:29 2012 UTC (13 months ago) by geissert

remove dup CVE ids/bug numbers

---

Revision 19269 - Directory Listing
Modified Fri May 18 01:22:53 2012 UTC (13 months ago) by geissert

check that the cve ids do exist in the list

---

Revision 19268 - Directory Listing
Modified Fri May 18 00:16:34 2012 UTC (13 months ago) by geissert

ask for the version numbers if not already passed

---

Revision 18900 - Directory Listing
Modified Tue Apr 10 01:22:50 2012 UTC (14 months, 1 week ago) by geissert

Move the description above the lot of links

---

Revision 18776 - Directory Listing
Modified Wed Mar 28 07:32:11 2012 UTC (14 months, 3 weeks ago) by thijs

now Debian hosted

---

Revision 18774 - Directory Listing
Modified Tue Mar 27 19:19:47 2012 UTC (14 months, 3 weeks ago) by fw

tracker_service.py: remove oldstable from front page

---

Revision 18473 - Directory Listing
Modified Sat Feb 18 19:41:07 2012 UTC (15 months, 4 weeks ago) by geissert

Split some code into functions for easier reading

---

Revision 18472 - Directory Listing
Modified Sat Feb 18 19:32:56 2012 UTC (15 months, 4 weeks ago) by geissert

Eat the "DSA-" prefix if included

---

Revision 18471 - Directory Listing
Modified Sat Feb 18 19:28:42 2012 UTC (15 months, 4 weeks ago) by geissert

trim trailing space in CVE list

---

Revision 18468 - Directory Listing
Modified Fri Feb 17 09:51:24 2012 UTC (16 months ago) by pabs

Add a link to the source code for the tracker (Closes: #645196)

---

Revision 18459 - Directory Listing
Modified Thu Feb 16 17:27:00 2012 UTC (16 months ago) by fw

bin/tracker_service.py: nicer output for external links

---

Revision 18458 - Directory Listing
Modified Thu Feb 16 17:21:38 2012 UTC (16 months ago) by fw

bin/tracker_service.py: fix syntax error

---

Revision 18451 - Directory Listing
Modified Thu Feb 16 03:07:12 2012 UTC (16 months ago) by pabs

Add links to Ubuntu, Gentoo CVE trackers and to the openwall vendors page

---

Revision 18384 - Directory Listing
Modified Mon Feb 6 08:01:25 2012 UTC (16 months, 1 week ago) by sf

clarify usage

---

Revision 17955 - Directory Listing
Modified Sun Jan 1 10:35:28 2012 UTC (17 months, 2 weeks ago) by luk

Also show CVEs that are not numbered correctly

---

Revision 17939 - Directory Listing
Modified Sat Dec 31 13:51:45 2011 UTC (17 months, 2 weeks ago) by luk

Also show proper CVE when RESERVED

---

Revision 17437 - Directory Listing
Modified Sun Oct 16 19:04:00 2011 UTC (20 months ago) by federico-guest

NFUs

---

Revision 17263 - Directory Listing
Modified Mon Sep 19 23:52:39 2011 UTC (20 months, 4 weeks ago) by geissert

Better handling of revisions of old DSAs

---

Revision 17262 - Directory Listing
Modified Mon Sep 19 23:46:28 2011 UTC (20 months, 4 weeks ago) by geissert

Automatically find a suitable DSA id

Usage: bin/gen-DSA package vuln ...

---

Revision 16971 - Directory Listing
Modified Sat Jul 23 05:52:46 2011 UTC (22 months, 3 weeks ago) by jrdioko-guest

Change "Introduction" link at http://security-tracker.debian.org/tracker/data/report

Changed "view=markup" to "view=co" which looks cleaner. It also looks like something
besides changing this file needs to be done to update the live website. First commit,
please correct me if I do anything wrong.

---

Revision 16962 - Directory Listing
Modified Wed Jul 20 22:29:50 2011 UTC (22 months, 4 weeks ago) by nion

fix narrative introduction link on tracker website

---

Revision 16654 - Directory Listing
Modified Tue May 10 19:55:08 2011 UTC (2 years, 1 month ago) by fw

bin/gen-DSA.py: simplify conditional

---

Revision 16653 - Directory Listing
Modified Tue May 10 19:54:01 2011 UTC (2 years, 1 month ago) by fw

bin/gen-DSA.py: try to fix calculation of least fixed version over several bugs

---

Revision 16645 - Directory Listing
Modified Sat May 7 12:56:12 2011 UTC (2 years, 1 month ago) by fw

security_db.DB: enable SQLite WAL mode

This means that we no longer have to copy the database file.

---

Revision 16637 - Directory Listing
Modified Fri May 6 19:09:28 2011 UTC (2 years, 1 month ago) by fw

bin/gen-DSA.py: fix off-by-one bug in month conversion

---

Revision 16636 - Directory Listing
Modified Fri May 6 19:07:21 2011 UTC (2 years, 1 month ago) by fw

bin/gen-DSA.py: pad days in date strings with zero if necessary

---

Revision 16590 - Directory Listing
Modified Sun Apr 24 18:23:55 2011 UTC (2 years, 1 month ago) by fw

bin/gen_DSA.py: add version information to data/DSA/list

---

Revision 16589 - Directory Listing
Modified Sun Apr 24 18:09:43 2011 UTC (2 years, 1 month ago) by fw

bin/gen_DSA.py: fill in version information for unstable (and, rarely, testing)

---

Revision 16588 - Directory Listing
Modified Sun Apr 24 17:52:21 2011 UTC (2 years, 1 month ago) by fw

bin/gen_DSA.py: fill in version information for stable and oldstable

---

Revision 16587 - Directory Listing
Modified Sun Apr 24 17:37:45 2011 UTC (2 years, 1 month ago) by fw

bin/gen_DSA.py: reimplementation of bin/gen-DSA in Python

Should have feature parity with the existing Shell script.

---

Revision 16581 - Directory Listing
Modified Sun Apr 24 15:35:27 2011 UTC (2 years, 1 month ago) by fw

bin/list-queue: remove dependency on debian_support

---

Revision 16580 - Directory Listing
Modified Sun Apr 24 15:27:54 2011 UTC (2 years, 1 month ago) by fw

bin/list-queue: annotate packages with their distributions

---

Revision 16579 - Directory Listing
Modified Sun Apr 24 15:09:25 2011 UTC (2 years, 1 month ago) by fw

bin/list-queue: slightly unify cache expiry and update

---

Revision 16578 - Directory Listing
Modified Sun Apr 24 15:02:36 2011 UTC (2 years, 1 month ago) by fw

bin/list-queue: export contents of .changes files

---

Revision 16577 - Directory Listing
Modified Sun Apr 24 14:25:18 2011 UTC (2 years, 1 month ago) by fw

debian_support.inspect_deb(): remove

bin/list-queue uses the parser in python-debian instead.

---

Revision 16576 - Directory Listing
Modified Sun Apr 24 14:07:43 2011 UTC (2 years, 1 month ago) by fw

bin/list-queue: new script, eventually to be run on security-master

---

Revision 16403 - Directory Listing
Modified Sun Mar 20 01:22:03 2011 UTC (2 years, 3 months ago) by geissert

Improve formatting of the CVE list

---

Revision 16306 - Directory Listing
Modified Sat Mar 5 06:00:25 2011 UTC (2 years, 3 months ago) by geissert

nicely handle cases where the DSA revision num is missing

---

Revision 16254 - Directory Listing
Modified Fri Feb 25 22:33:50 2011 UTC (2 years, 3 months ago) by gilbert-guest

revert use of nvd text in all descriptions (closes: #614887)

---

Revision 16215 - Directory Listing
Modified Mon Feb 21 04:10:00 2011 UTC (2 years, 3 months ago) by gilbert-guest

show unimportant issues on the per-package pages (closes: #479727)

---

Revision 16214 - Directory Listing
Modified Mon Feb 21 04:09:38 2011 UTC (2 years, 3 months ago) by gilbert-guest

show all DSAs on package pages (closes: #608994)

---

Revision 16139 - Directory Listing
Modified Mon Feb 14 02:05:11 2011 UTC (2 years, 4 months ago) by gilbert-guest

remove a couple scripts that haven't really been used

---

Revision 16134 - Directory Listing
Modified Sun Feb 13 22:46:09 2011 UTC (2 years, 4 months ago) by gilbert-guest

display notes on todo page

---

Revision 16133 - Directory Listing
Modified Sun Feb 13 22:45:52 2011 UTC (2 years, 4 months ago) by gilbert-guest

use nvd text in all descriptions

---

Revision 16078 - Directory Listing
Modified Mon Feb 7 13:49:40 2011 UTC (2 years, 4 months ago) by pere

Improve CVE/CPE reporting.

---

Revision 16070 - Directory Listing
Modified Sun Feb 6 10:44:26 2011 UTC (2 years, 4 months ago) by thijs

lenny, squeeze, wheezy

---

Revision 16040 - Directory Listing
Modified Wed Feb 2 20:50:57 2011 UTC (2 years, 4 months ago) by pere

Implement support for comments in CPE files.   Sort CVE list in reverse order.

---

Revision 16005 - Directory Listing
Modified Sat Jan 29 21:44:49 2011 UTC (2 years, 4 months ago) by pere

Map CPE aliases to the first in the alias list.

---

Revision 15976 - Directory Listing
Modified Wed Jan 26 21:01:44 2011 UTC (2 years, 4 months ago) by pere

Add first sketch using data/CPE/list.

---

Revision 15903 - Directory Listing
Modified Sun Jan 16 09:35:41 2011 UTC (2 years, 5 months ago) by thijs

no need to display etch anymore

---

Revision 15865 - Directory Listing
Modified Fri Jan 14 22:35:48 2011 UTC (2 years, 5 months ago) by fw

bin/tracker_service: do not include oldstable in PTS export

---

Revision 15839 - Directory Listing
Modified Thu Jan 13 05:39:57 2011 UTC (2 years, 5 months ago) by geissert

Add new script to list RESERVED issues for which we have data
Usage: bin/reserved-but-public [--verbose]

---

Revision 15797 - Directory Listing
Modified Thu Jan 6 00:07:52 2011 UTC (2 years, 5 months ago) by geissert

A few more tweaks to bin/gen-DSA
Use --save instead of piping the output to a file

---

Revision 15794 - Directory Listing
Modified Wed Jan 5 21:59:33 2011 UTC (2 years, 5 months ago) by geissert

Add a DSA template and a script to generate it
Example: bin/gen-DSA 2120-1 php5 "multiple vulnerabilities" > DSA

---

Revision 15047 - Directory Listing
Modified Wed Jul 28 20:29:35 2010 UTC (2 years, 10 months ago) by geissert

etch should be ignored, also warn about removed/itp entries when the package *does* exist

---

Revision 14909 - Directory Listing
Modified Sun Jun 27 04:03:20 2010 UTC (2 years, 11 months ago) by geissert

Don't count unimportant issues on data fed to the PTS

---

Revision 14375 - Directory Listing
Modified Fri Apr 2 14:03:25 2010 UTC (3 years, 2 months ago) by derevko-guest

bin/dsa2list: search also the line "Debian (<release>)" to determine the release

---

Revision 14303 - Directory Listing
Modified Fri Mar 19 22:47:04 2010 UTC (3 years, 3 months ago) by gilbert-guest

use a consistent note for unclear remote status; show unclear issues when remote-only selected

---

Revision 14298 - Directory Listing
Modified Thu Mar 18 19:53:10 2010 UTC (3 years, 3 months ago) by fw

tracker_service.py: fix typo in page_status_dtsa_candidates

---

Revision 14207 - Directory Listing
Modified Sun Mar 7 17:44:14 2010 UTC (3 years, 3 months ago) by fw

bin/tracker_service.py: Remove binary package data from webpage

This is just to see if it is feasible to remove all binary package
processing.  Some people might use tracker as some sort of "dak ls"
replacement.

---

Revision 14116 - Directory Listing
Modified Wed Feb 17 01:59:11 2010 UTC (3 years, 4 months ago) by gilbert-guest

support changes in nvd schema for remote and local issues

---

Revision 14059 - Directory Listing
Modified Sun Feb 7 22:10:57 2010 UTC (3 years, 4 months ago) by gilbert-guest

new pages for undetermined and unimportant issues

---

Revision 14058 - Directory Listing
Modified Sun Feb 7 22:10:53 2010 UTC (3 years, 4 months ago) by gilbert-guest

use nvd urgencies and add finer control for per-release pages

---

Revision 14057 - Directory Listing
Modified Sun Feb 7 22:10:48 2010 UTC (3 years, 4 months ago) by gilbert-guest

per-release page refactoring

---

Revision 13785 - Directory Listing
Modified Mon Jan 11 08:26:09 2010 UTC (3 years, 5 months ago) by geissert

remove call to linkyfing function until some type issues are fixed

---

Revision 13784 - Directory Listing
Modified Mon Jan 11 07:49:35 2010 UTC (3 years, 5 months ago) by geissert

"linkify" links in notes
it should later be extended to turn CVE- strings into links too

---

Revision 13767 - Directory Listing
Modified Fri Jan 8 21:15:44 2010 UTC (3 years, 5 months ago) by geissert

Add a link to RedHat's bugzilla to the web CVE page

---

Revision 13715 - Directory Listing
Modified Tue Jan 5 01:10:55 2010 UTC (3 years, 5 months ago) by geissert

Add missing escape on regex

---

Revision 13713 - Directory Listing
Modified Tue Jan 5 00:36:43 2010 UTC (3 years, 5 months ago) by geissert

add .h command to list available commands
add ! command to execute any command via system()

---

Revision 13694 - Directory Listing
Modified Sat Jan 2 01:37:50 2010 UTC (3 years, 5 months ago) by gilbert-guest

adding support for <undetermined> in the tracker service.  feedback and comments are very welcome.

---

Revision 13664 - Directory Listing
Modified Sat Dec 26 21:46:48 2009 UTC (3 years, 5 months ago) by geissert

Add a shortcut to report-vuln from within check-new-issues

Any decent editor should be able to pipe the message to mutt or any
other MUA

---

Revision 13662 - Directory Listing
Modified Sat Dec 26 20:50:38 2009 UTC (3 years, 5 months ago) by geissert

Look for ITPs and RFPs in check-new-issues

---

Revision 13614 - Directory Listing
Modified Mon Dec 21 06:06:44 2009 UTC (3 years, 5 months ago) by gilbert-guest

a regression in BaseHTTPServer (http://bugs.debian.org/561899) makes it appear that the local tracker isn't running, but it is
- change local ip address to something that works for both stable and unstable

---

Revision 13540 - Directory Listing
Modified Sun Dec 13 15:37:41 2009 UTC (3 years, 6 months ago) by gilbert-guest

a couple simple, possibly useful scripts

---

Revision 13517 - Directory Listing
Modified Sat Dec 12 07:43:50 2009 UTC (3 years, 6 months ago) by geissert

Fix link to the svn repo

---

Revision 13131 - Directory Listing
Modified Wed Oct 28 22:55:17 2009 UTC (3 years, 7 months ago) by jwilk-guest

embedded-cleanup: end errors/warnings list with a newline.

---

Revision 13058 - Directory Listing
Modified Wed Oct 21 18:43:24 2009 UTC (3 years, 7 months ago) by derevko-guest

NFUs
s/security-tracker.debian.net/security-tracker.debian.org

---

Revision 12999 - Directory Listing
Modified Mon Oct 12 17:41:52 2009 UTC (3 years, 8 months ago) by fw

bin/tracker_service.py (TrackerService.page_data_pts): add PTS export

---

Revision 12993 - Directory Listing
Modified Sun Oct 11 19:00:26 2009 UTC (3 years, 8 months ago) by fw

bin/tracker_service.py (TrackerService.page_redirect): handle empty argument

---

Revision 12986 - Directory Listing
Modified Sun Oct 11 12:05:22 2009 UTC (3 years, 8 months ago) by fw

bin/test-web-server: switch to HTTP invocation

---

Revision 12985 - Directory Listing
Modified Sun Oct 11 12:04:15 2009 UTC (3 years, 8 months ago) by fw

bin/tracker_service.py: implement HTTP invocation

The old command line arguments still create a servinvoke-based service.

---

Revision 12706 - Directory Listing
Modified Sat Aug 29 18:34:40 2009 UTC (3 years, 9 months ago) by gilbert-guest

inject-embedded-code-copies: fix last cve in list getting ommited, and remove dead code

---

Revision 12669 - Directory Listing
Modified Mon Aug 24 01:48:47 2009 UTC (3 years, 9 months ago) by gilbert-guest

cleanup of inject-embedded-code-copies, copyright notice added

---

Revision 12668 - Directory Listing
Modified Mon Aug 24 00:59:44 2009 UTC (3 years, 9 months ago) by gilbert-guest

introduction of inject-embedded-code-copies

---

Revision 12517 - Directory Listing
Modified Sat Aug 8 17:26:46 2009 UTC (3 years, 10 months ago) by geissert

Add a 'fixed-only' mode to get-bug-status so that it can be used for
general maintenance pourposes

---

Revision 12055 - Directory Listing
Modified Sat Jun 6 08:13:13 2009 UTC (4 years ago) by sf

- make check-new-issues -U ignore removed packages
- add some packages to the removed list

---

Revision 12006 - Directory Listing
Modified Mon Jun 1 11:03:28 2009 UTC (4 years ago) by sf

make sure bugs with 'bug filed' are also selected with -U

---

Revision 12001 - Directory Listing
Modified Sat May 30 20:43:39 2009 UTC (4 years ago) by sf

Add -u/-U options to also/only select issues that are marked as unfixed but
are missing a bug reference.

This ignores some packages (kernels, some removed packages, php4).

Comments welcome.

---

Revision 11861 - Directory Listing
Modified Sun May 10 05:20:38 2009 UTC (4 years, 1 month ago) by atomo64-guest

New script to detect inconsistencies in embedded-code-copies

---

Revision 11725 - Directory Listing
Modified Sun Apr 26 22:45:45 2009 UTC (4 years, 1 month ago) by atomo64-guest

It uses bashisms, changing shebang to bash

---

Revision 11578 - Directory Listing
Modified Tue Apr 7 21:44:10 2009 UTC (4 years, 2 months ago) by gilbert-guest

did not mean to commit change to update-nvd; reverting

---

Revision 11576 - Directory Listing
Modified Tue Apr 7 21:23:54 2009 UTC (4 years, 2 months ago) by gilbert-guest

some info on postgresql issue

---

Revision 11223 - Directory Listing
Modified Sun Feb 15 17:17:11 2009 UTC (4 years, 4 months ago) by fw

bin/tracker_service.py: add oldstable-backports

---

Revision 11220 - Directory Listing
Modified Sun Feb 15 13:29:11 2009 UTC (4 years, 4 months ago) by fw

bin/tracker_service.py: provide a link to the oldstable page

---

Revision 11216 - Directory Listing
Modified Sat Feb 14 17:02:12 2009 UTC (4 years, 4 months ago) by thijs

resurrect oldstable

---

Revision 11215 - Directory Listing
Modified Sat Feb 14 16:57:17 2009 UTC (4 years, 4 months ago) by thijs

oldstable is now etch, stable is now lenny, testing is now squeeze

---

Revision 10840 - Directory Listing
Modified Sat Jan 3 12:05:35 2009 UTC (4 years, 5 months ago) by sf

allow to read embedded-code-copies from stdin, for use in svn hook

---

Revision 10838 - Directory Listing
Modified Sat Jan 3 11:46:47 2009 UTC (4 years, 5 months ago) by sf

do not escape spaces when calling apt-cache search

---

Revision 10628 - Directory Listing
Modified Fri Dec 5 19:10:23 2008 UTC (4 years, 6 months ago) by fw

bin/show-debsecan: new script to debug debsecan data

---

Revision 10607 - Directory Listing
Modified Wed Dec 3 20:02:24 2008 UTC (4 years, 6 months ago) by fw

bin/tracker_service.py: Add overview page for stable backports

This compares the version numbers against unstable (instead of
testing, which would be more appropriate), but it is better than
nothing.

---

Revision 10581 - Directory Listing
Modified Tue Dec 2 21:13:10 2008 UTC (4 years, 6 months ago) by fw

bin/apt-update-file: In case of an error, print source and target

---

Revision 10568 - Directory Listing
Modified Mon Dec 1 19:05:28 2008 UTC (4 years, 6 months ago) by fw

bin/test-web-server: New script for testing purposes

---

Revision 10526 - Directory Listing
Modified Sat Nov 29 10:36:17 2008 UTC (4 years, 6 months ago) by fw

bin/tracker_service.py: Remove oldstable from the web front end

We can resurrect it if needed again.

---

Revision 10437 - Directory Listing
Modified Thu Nov 20 15:15:24 2008 UTC (4 years, 6 months ago) by fw

bin/update-nvd: Remove duplicates before loading NVD data

---

Revision 10214 - Directory Listing
Modified Fri Oct 31 14:15:58 2008 UTC (4 years, 7 months ago) by thomasbl-guest

change bin/get-todo-items, so that you can run it from everywhere

---

Revision 10016 - Directory Listing
Modified Tue Oct 7 07:03:04 2008 UTC (4 years, 8 months ago) by thijs

also support subjects that have "DSA-nnnn-i" instead of "DSA nnnn-i", this
caused some recent advisories not to be added automatically

---

Revision 9877 - Directory Listing
Modified Tue Sep 23 23:11:54 2008 UTC (4 years, 8 months ago) by stef-guest

if automatic search gives only a few results, display all of them instead of just the count (-a 0 gives the old behaviour)

---

Revision 9874 - Directory Listing
Modified Tue Sep 23 21:49:30 2008 UTC (4 years, 8 months ago) by stef-guest

correctly display the apt-file command that is executed

---

Revision 9808 - Directory Listing
Modified Sat Sep 13 10:01:00 2008 UTC (4 years, 9 months ago) by thijs

update nvd url

---

Revision 9038 - Directory Listing
Modified Wed Jun 11 19:29:21 2008 UTC (5 years ago) by nion

remove superfluous newline

---

Revision 9011 - Directory Listing
Modified Sat Jun 7 09:12:39 2008 UTC (5 years ago) by nion

use urllib instead of httplib as it takes care of http_proxy by itself

---

Revision 9005 - Directory Listing
Modified Fri Jun 6 18:08:29 2008 UTC (5 years ago) by nion

fix http replacement, todo: seperate proxy processing from http function

---

Revision 9002 - Directory Listing
Modified Fri Jun 6 14:26:15 2008 UTC (5 years ago) by nion

fix proxy support if http_proxy is not set

---

Revision 8997 - Directory Listing
Modified Fri Jun 6 13:36:21 2008 UTC (5 years ago) by nion

NFUs

---

Revision 8857 - Directory Listing
Modified Wed May 21 08:30:08 2008 UTC (5 years ago) by fw

Remove oldstable from the tracker

---

Revision 8466 - Directory Listing
Modified Tue Apr 1 22:07:34 2008 UTC (5 years, 2 months ago) by stef-guest

fix typo

---

Revision 8465 - Directory Listing
Modified Tue Apr 1 21:52:08 2008 UTC (5 years, 2 months ago) by stef-guest

fix escaping of product names

---

Revision 8464 - Directory Listing
Modified Tue Apr 1 21:36:42 2008 UTC (5 years, 2 months ago) by stef-guest

localtime is weird and starts counting months with 0

---

Revision 8437 - Directory Listing
Modified Fri Mar 28 17:08:08 2008 UTC (5 years, 2 months ago) by nion

adding report-vuln script

---

Revision 8397 - Directory Listing
Modified Mon Mar 24 17:12:19 2008 UTC (5 years, 2 months ago) by nion

add date to subject of testing-security update notifications

---

Revision 8112 - Directory Listing
Modified Fri Feb 8 21:58:10 2008 UTC (5 years, 4 months ago) by thijs

location of testing.pl has been officialised

---

Revision 7925 - Directory Listing
Modified Mon Jan 14 23:08:05 2008 UTC (5 years, 5 months ago) by stef-guest

- preliminary support for embedded-code-copies
- minor improvements at guessing the product name

---

Revision 7808 - Directory Listing
Modified Thu Jan 3 21:27:59 2008 UTC (5 years, 5 months ago) by stef-guest

- readline support (needs libterm-readline-gnu-perl)
- be smarter about where to find data/CVE/list

---

Revision 7645 - Directory Listing
Modified Mon Dec 17 21:28:59 2007 UTC (5 years, 6 months ago) by fw

* tracker.cgi
  Remove obsolete CGI script

---

Revision 7489 - Directory Listing
Modified Mon Dec 3 22:33:14 2007 UTC (5 years, 6 months ago) by nion

secure-testing-master -> testing-security

---

Revision 7294 - Directory Listing
Modified Tue Nov 13 15:37:14 2007 UTC (5 years, 7 months ago) by nion

add bug severity to output

---

Revision 7029 - Directory Listing
Modified Sat Oct 20 09:44:07 2007 UTC (5 years, 8 months ago) by stef-guest

fix usage message

---

Revision 6806 - Directory Listing
Modified Fri Oct 5 11:36:49 2007 UTC (5 years, 8 months ago) by nion

recognize if the maintainer is already preparing a fixed upload (pending tag)

---

Revision 6770 - Directory Listing
Modified Wed Oct 3 07:44:21 2007 UTC (5 years, 8 months ago) by fw

dsa2list: add missing "continue"

A pointless performance tweak.

---

Revision 6769 - Directory Listing
Modified Wed Oct 3 07:44:19 2007 UTC (5 years, 8 months ago) by fw

dsa2list: add support for the "dak new-security-install" format

This should not be used for DSAs, but it's out there anyway.

---

Revision 6768 - Directory Listing
Modified Wed Oct 3 07:44:14 2007 UTC (5 years, 8 months ago) by fw

dsa2list: better detection of installation path

It's now possible to symlink the script to ~/bin and run it
from there.

---

Revision 6679 - Directory Listing
Modified Sun Sep 23 13:18:01 2007 UTC (5 years, 8 months ago) by nion

recognize if a patch is available

---

Revision 6654 - Directory Listing
Modified Thu Sep 20 18:14:54 2007 UTC (5 years, 8 months ago) by nion

get-todo-items returns cve, package name, bug and bug status for a given unfixed issue, get-bug-status is used to get the status via soap

---

Revision 6583 - Directory Listing
Modified Wed Sep 12 00:56:21 2007 UTC (5 years, 9 months ago) by joeyh

fix number

---

Revision 6578 - Directory Listing
Modified Tue Sep 11 20:06:21 2007 UTC (5 years, 9 months ago) by stef-guest

fix typo, add note

---

Revision 6559 - Directory Listing
Modified Mon Sep 10 06:39:35 2007 UTC (5 years, 9 months ago) by thijs

make dsa2list executable

---

Revision 6547 - Directory Listing
Modified Sat Sep 8 09:23:56 2007 UTC (5 years, 9 months ago) by stef-guest

fix typos

---

Revision 6538 - Directory Listing
Modified Fri Sep 7 18:32:11 2007 UTC (5 years, 9 months ago) by stef-guest

add perl script to check for fixed issues in testing

---

Revision 6507 - Directory Listing
Modified Wed Sep 5 12:01:36 2007 UTC (5 years, 9 months ago) by thijs

more fixes for cve urls

---

Revision 6473 - Directory Listing
Modified Mon Sep 3 07:44:07 2007 UTC (5 years, 9 months ago) by fw

* bin/dsa2list:
  Ignore non-existent files.
  Reverse output order to match file order.

---

Revision 6472 - Directory Listing
Modified Sun Sep 2 23:42:46 2007 UTC (5 years, 9 months ago) by fw

* bin/dsa2list: Fix date format

---

Revision 6467 - Directory Listing
Modified Sun Sep 2 17:13:53 2007 UTC (5 years, 9 months ago) by stef-guest

fix mitre url in some other places

---

Revision 6451 - Directory Listing
Modified Fri Aug 31 11:54:29 2007 UTC (5 years, 9 months ago) by nion

fixed escaping of generated java script

---

Revision 6444 - Directory Listing
Modified Thu Aug 30 15:24:04 2007 UTC (5 years, 9 months ago) by fw

* bin/check-sytax:
  Support reading from standard input

---

Revision 6442 - Directory Listing
Modified Thu Aug 30 15:21:27 2007 UTC (5 years, 9 months ago) by fw

* bin/check-sytax:
  Remove CAN parser

---

Revision 6438 - Directory Listing
Modified Thu Aug 30 09:56:15 2007 UTC (5 years, 9 months ago) by fw

* bin/dsa2list:
  Permit processing of multiple mail messages

---

Revision 6436 - Directory Listing
Modified Thu Aug 30 09:51:23 2007 UTC (5 years, 9 months ago) by fw

* bin/dsa2list:
  New version that processes postings to debian-security-announce

---

Revision 6417 - Directory Listing
Modified Tue Aug 28 20:57:52 2007 UTC (5 years, 9 months ago) by stef-guest

change CVE URL

---

Revision 6389 - Directory Listing
Modified Fri Aug 24 09:27:16 2007 UTC (5 years, 9 months ago) by thijs

textfix

---

Revision 6342 - Directory Listing
Modified Thu Aug 16 20:58:17 2007 UTC (5 years, 10 months ago) by stef-guest

fix bug that empty list of cross-references was not deleted

---

Revision 6277 - Directory Listing
Modified Sat Aug 11 18:36:41 2007 UTC (5 years, 10 months ago) by stef-guest

change mailing list in tracker

---

Revision 6076 - Directory Listing
Modified Fri Jun 29 16:36:14 2007 UTC (5 years, 11 months ago) by stef-guest

back out website changes I didn't really want to commit

---

Revision 6075 - Directory Listing
Modified Fri Jun 29 16:34:06 2007 UTC (5 years, 11 months ago) by stef-guest

krb5 fixed

---

Revision 6009 - Directory Listing
Modified Sat Jun 16 10:41:23 2007 UTC (6 years ago) by fw

* bin/mass-bug-filer:
  Small script to file security bugs, with a few sanity checks.

---

Revision 5745 - Directory Listing
Modified Fri Apr 27 19:10:58 2007 UTC (6 years, 1 month ago) by fw

* bin/update-db:
  Report the location of parse errors in Debian's meta-data files.

---

Revision 5655 - Directory Listing
Modified Sun Apr 15 09:51:47 2007 UTC (6 years, 2 months ago) by fw

* bin/tracker_service.py:
  Update DTSA candidates page for the etch release

---

Revision 5470 - Directory Listing
Modified Sun Feb 18 16:50:24 2007 UTC (6 years, 4 months ago) by fw

Treat packages marked as <removed> as source packages.
This allows us to track firefox issues again.

* lib/python/bugs.py (FileBase):
  Keep track of removed packages.

* lib/python/security_db.py
  (DB.readBugs): Populate removed_packages table using <removed> entries.
  (DB.readRemovedPackages): Remove method.

* bin/update-db:
  Do not call readRemovedPackages anymore.

---

Revision 5242 - Directory Listing
Modified Thu Jan 11 20:24:27 2007 UTC (6 years, 5 months ago) by stef-guest

fix to really support non DSA/DTSA cross references, also fixes some missing 'TODO: check' entries

---

Revision 5190 - Directory Listing
Modified Wed Dec 27 23:25:37 2006 UTC (6 years, 5 months ago) by stef-guest

- change regexp to select TODOs from "TODO: check" to "TODO: check$";
  old behaviour available with -T
  any regexp can be specified with -t
- regexp for selection of issues based on name can be changed with -i

---

Revision 5103 - Directory Listing
Modified Sun Dec 10 18:36:34 2006 UTC (6 years, 6 months ago) by fw

Various changes to switch from FAKE- to TEMP- prefixes

(Yeah, less than stellar engineering that this isn't concentrated
in a single place.)

---

Revision 5100 - Directory Listing
Modified Sun Dec 10 17:35:42 2006 UTC (6 years, 6 months ago) by fw

Add a no-dsa filter to the "testing" web page

lib/python/security_db.py (DB._initViews):
  Add no_dsa column to the testing_status table.

bin/tracker_service.py (TrackerService.page_status_release_testing):
  Use it to implement the filter in the same way as for "stable".

---

Revision 5041 - Directory Listing
Modified Fri Dec 1 22:39:30 2006 UTC (6 years, 6 months ago) by stef-guest

prevent pre-2003 TODOs from beind added

---

Revision 5001 - Directory Listing
Modified Wed Nov 22 22:42:18 2006 UTC (6 years, 6 months ago) by stef-guest

- bugfix: we need to add "TODO: check" even if the CVE was know from a DSA before appearing at mitre
- use gzipped version of allitems.html to save bandwidth

---

Revision 4941 - Directory Listing
Modified Wed Nov 8 21:35:50 2006 UTC (6 years, 7 months ago) by stef-guest

check-new-issues
downloads allitems.txt from cve.mitre.org and shows full decription for each
"TODO: check" item. It then tries to guess name and/or script file names and
does apt-cache or apt-file search and allows to directly replace the TODO by a
NFU. This is good for weeding out all those trivial PHP NFUs issues.

check-new-issues -l
will just list the issues with with a longer description than in CVE/list itself.
This helps when looking for interesting new issues.

check-new-issues -h
will give some help

All in all nothing fancy but saves some time. Currently it want's to be called
from the parent dir as:
secure-testing/bin/check-new-issues

---

Revision 4662 - Directory Listing
Modified Fri Sep 1 16:49:14 2006 UTC (6 years, 9 months ago) by stef-guest

fix typo

---

Revision 4570 - Directory Listing
Modified Tue Aug 15 17:50:19 2006 UTC (6 years, 10 months ago) by seanius

s/participiating/participating/

---

Revision 4284 - Directory Listing
Modified Thu Jun 22 21:44:30 2006 UTC (6 years, 11 months ago) by stef-guest

- use new url for testing-security
- point to idssi.enyo.de/tracker
- note that some fixes might be in experimental, not unstable

---

Revision 4173 - Directory Listing
Modified Sun Jun 11 02:06:20 2006 UTC (7 years ago) by joeyh

use dak ls unstead of madison

---

Revision 4005 - Directory Listing
Modified Sat May 20 17:08:37 2006 UTC (7 years, 1 month ago) by fw

* lib/python/security_db.py (DB.getTODOs):
  Add hide_check parameter.

* bin/tracker_service.py (TrackerService.page_status_todo):
  Use it.

---

Revision 3902 - Directory Listing
Modified Mon May 1 09:04:25 2006 UTC (7 years, 1 month ago) by fw

bin/tracker_service (BugFilter):
  Fix crash while displaying the unstable/testing overviews.

---

Revision 3859 - Directory Listing
Modified Sun Apr 23 13:24:05 2006 UTC (7 years, 1 month ago) by fw

Implement filtering vulnerabilities for which no DSA is scheduled.

bin/tracker_service.py (BugFilter):
  Refactor for better extensibility.
(BugFilterNoDSA):
  New class.
(TrackerService.page_status_release_stable_oldstable):
  Add no-dsa filter.

---

Revision 3597 - Directory Listing
Modified Sat Mar 11 18:44:21 2006 UTC (7 years, 3 months ago) by fw

bin/tracker_service.py (TrackerService.make_search_button):
  Add missing space.

---

Revision 3596 - Directory Listing
Modified Sat Mar 11 18:43:13 2006 UTC (7 years, 3 months ago) by fw

bin/tracker_service.py (TrackerService.make_search_button):
  Link to report page.

---

Revision 3595 - Directory Listing
Modified Sat Mar 11 18:40:14 2006 UTC (7 years, 3 months ago) by fw

bin/tracker_service.py (TrackerService.page_home):
  Add missing space.
(TrackerService.page_report):
  Point URL directly to the introduction document.

---

Revision 3594 - Directory Listing
Modified Sat Mar 11 18:27:37 2006 UTC (7 years, 3 months ago) by fw

Incorporate Micah's changes.

bin/tracker_service.py (TrackerService.page_home):
  Modernize.
(TrackerService.page_report):
  New page.

---

Revision 3479 - Directory Listing
Modified Tue Feb 14 20:56:53 2006 UTC (7 years, 4 months ago) by joeyh

ignore <no-dsa>

---

Revision 3334 - Directory Listing
Modified Sat Jan 21 20:31:38 2006 UTC (7 years, 4 months ago) by joeyh

skip codename tagged lines

---

Revision 3311 - Directory Listing
Modified Tue Jan 17 18:46:14 2006 UTC (7 years, 5 months ago) by fw

bin/tracker_service.py (TrackerService.page_object_or_redirect):
  Handle FAKE-nnn objects.
(TrackerService.page_debian_bug):
  Make this method usable for dealing with FAKE-nnn objects.

---

Revision 3166 - Directory Listing
Modified Tue Dec 27 15:08:37 2005 UTC (7 years, 5 months ago) by fw

bin/tracker_service.py (TrackerService.page_data_latently_vulnerable):
  Report on "unimportant" urgency.

---

Revision 3164 - Directory Listing
Modified Tue Dec 27 13:58:32 2005 UTC (7 years, 5 months ago) by fw

bin/dsa2list:
  Remove whitespace around CVE list.

---

Revision 3136 - Directory Listing
Modified Fri Dec 23 21:09:32 2005 UTC (7 years, 5 months ago) by fw

bin/tracker_service.py (TrackerService):
  Add page data/latently-vulnerable.
(TrackerService.page_data_latently_vulnerable):
  New method.

---

Revision 3129 - Directory Listing
Modified Fri Dec 23 13:15:25 2005 UTC (7 years, 5 months ago) by fw

lib/python/security_db.py (DB.initSchema):
  Add index on package_notes(package) (no schema version bump needed).
(DB.calculateDebsecan0):
  Renamed from DB.calculateDebsecan.
(DB.calculateDebsecan1):
  New method which generates version 1 format (with pinning support
  wtc.).
(DB.calculateDebsecan):
  Invokes both the version 0 and version 1 methods.

bin/update-db:
  Adjust accordingly.

---

Revision 3107 - Directory Listing
Modified Tue Dec 20 12:44:04 2005 UTC (7 years, 6 months ago) by fw

bin/dsa2list:
  New script.

doc/narrative_introduction:
  Mention it.

---

Revision 3080 - Directory Listing
Modified Sat Dec 17 11:58:49 2005 UTC (7 years, 6 months ago) by fw

bin/tracker_service.py (TrackerService.page_bug):
  One more tweak for compactness.

---

Revision 3079 - Directory Listing
Modified Sat Dec 17 11:57:44 2005 UTC (7 years, 6 months ago) by fw

bin/tracker_service.py (TrackerService.page_bug):
  Make header more compact.

---

Revision 3078 - Directory Listing
Modified Sat Dec 17 11:17:21 2005 UTC (7 years, 6 months ago) by fw

Store CVE descriptions in the nvd_data table.  Enable incremental
NVD updates.

lib/python/security_db.py (DB):
  Bump schema version.  Add cve_desc column to the nvd_data table.
(DB.updateNVD):
  New method.

bin/update-nvd:
  If the -i option is specified, use updateNVD instead of replaceNVD.

lib/python/nvd.py (_Parser):
  Add new member variable path.
(_Parser.characters):
  New method.
(_Parser.endElement):
  Store cve_desc variable.

bin/tracker_service.py (TrackerService.page_bug):
  Use NVD description if available.

---

Revision 3071 - Directory Listing
Modified Fri Dec 16 09:43:24 2005 UTC (7 years, 6 months ago) by fw

bin/tracker_service.py (TrackerService.page_home):
  Update to include oldstable.

---

Revision 3069 - Directory Listing
Modified Fri Dec 16 09:23:57 2005 UTC (7 years, 6 months ago) by fw

lib/python/security_db.py (DB):
  Bump schema version.  Add oldstable_status view.

bin/tracker_service.py (TrackerService):
  Add oldstable page.

---

Revision 3056 - Directory Listing
Modified Thu Dec 15 13:44:01 2005 UTC (7 years, 6 months ago) by fw

bin/update-db:
  Do not hard-code the database name.  Use SQLite in non-synchronous
  mode.

Makefile (all):
  Run bin/update-db on a copy of the database, so that we can continue
  to serve requests while the database is being updated.

---

Revision 3054 - Directory Listing
Modified Thu Dec 15 12:50:36 2005 UTC (7 years, 6 months ago) by fw

bin/apt-update-file:
  Be less verbose.

---

Revision 3053 - Directory Listing
Modified Thu Dec 15 12:46:09 2005 UTC (7 years, 6 months ago) by fw

bin/update-db:
  Be less verbose.

---

Revision 3051 - Directory Listing
Modified Thu Dec 15 11:37:40 2005 UTC (7 years, 6 months ago) by fw

lib/python/security_db.py (DB):
  Bump schema version.
(DB.initSchema):
  Add debsecan_data table.
(DB.calculateDebsecan, DB.getDebsecan):
  New methods.

bin/update-db:
  Invoke calculateDebsecan.

bin/tracker_service.py (TrackerService):
  Add support for debsecan/* pages.
(TrackerService.page_debsecan):
  New method.

---

Revision 3014 - Directory Listing
Modified Mon Dec 12 15:28:39 2005 UTC (7 years, 6 months ago) by fw

bin/tracker_service.py (TrackerService.page_status_release_unstable):
  Correct page title.

---

Revision 2679 - Directory Listing
Modified Sun Nov 6 14:44:51 2005 UTC (7 years, 7 months ago) by fw

bin/tracker_service.py (TrackerService.page_status_dtsa_candidates):
  Fix message in front of the generated table.

---

Revision 2659 - Directory Listing
Modified Fri Nov 4 01:19:19 2005 UTC (7 years, 7 months ago) by joeyh

deal with the case where a bug moved from ove CVE id to another, don't
unset the tracked flag last in this case, instead, unset it and then re-set
it.

---

Revision 2554 - Directory Listing
Modified Mon Oct 24 14:43:04 2005 UTC (7 years, 7 months ago) by fw

Add a summary page for tracked bugs without a CVE name.

lib/python/security_db.py (DB.getFakeBugs):
  New method.

bin/tracker_service.py (TrackerService.page_data_fake_names):
  New method.
(TrackerService.__intit__, TrackerService.page_home):
  Use it.

---

Revision 2521 - Directory Listing
Modified Thu Oct 20 17:50:54 2005 UTC (7 years, 8 months ago) by joeyh

skip <unfixed> when looking for kernel packges that need update

---

Revision 2520 - Directory Listing
Modified Thu Oct 20 17:24:52 2005 UTC (7 years, 8 months ago) by joeyh

ignore new distro tags until I work out something better to do with them

---

Revision 2511 - Directory Listing
Modified Thu Oct 20 13:47:06 2005 UTC (7 years, 8 months ago) by fw

bin/tracker_service.py (TrackerService.page_bug):
  For redirect URLs, normalize CAN-* to CVE-*.

---

Revision 2495 - Directory Listing
Modified Thu Oct 20 09:32:16 2005 UTC (7 years, 8 months ago) by fw

bin/tracker_service.py (TrackerService):
  Changes for the CVE transition.

---

Revision 2491 - Directory Listing
Modified Thu Oct 20 09:04:11 2005 UTC (7 years, 8 months ago) by fw

 r773@deneb:  fw | 2005-10-20 10:42:35 +0200
 bin/tracker_service.py (BugFilter):
   New class.
 (TrackerService):
   Use it where applicable.

---

Revision 2489 - Directory Listing
Modified Thu Oct 20 09:03:51 2005 UTC (7 years, 8 months ago) by fw

 r639@deneb:  fw | 2005-10-14 16:07:15 +0200
 bin/tracker_service.py (TrackerService.page_home):
   Mention NVD explicitly.

---

Revision 2488 - Directory Listing
Modified Thu Oct 20 09:03:39 2005 UTC (7 years, 8 months ago) by fw

 r638@deneb:  fw | 2005-10-14 15:43:12 +0200
 bin/tracker_service.py (TrackerService.page_home):
   Document external interfaces.
 (TrackerService.page_bug):
   Add NVD references.
 (TrackerService.page_status_release_stable,
  TrackerService.page_status_release_testing):
   Show NVD remote attack range if present.
 (TrackerService.url_nvd, TrackerService.make_nvd_ref):
   New.
 
 lib/python/security_db.py (NVDEntry):
   New class.
 (DB.initSchema):
   New nvd_data table.  Update stable_status and testing_status views.
 (DB.replaceNVD, DB.getNVD):
   New methods.
 
 bin/update-nvd, lib/python/nvd.py:
   New files.

---

Revision 2485 - Directory Listing
Modified Thu Oct 20 09:03:03 2005 UTC (7 years, 8 months ago) by fw

 r628@deneb:  fw | 2005-10-14 10:35:43 +0200
 bin/tracker_service.py (TrackerService.page_redirect):
   New method.  Invokes page_object_or_redirect.
 (TrackerService.page_object):
   Reimplement in terms of page_object_or_redirect.
 (TrackerService.page_object_or_redirect):
   Display an object page, or redirect to the correct page
   (which can be external).

---

Revision 2482 - Directory Listing
Modified Thu Oct 20 09:02:12 2005 UTC (7 years, 8 months ago) by fw

 r614@deneb:  fw | 2005-10-13 22:12:28 +0200
 Add new web front end.
 
 bin/tracker_service.py, lib/python/web_support.py:
   New files.

---

Revision 2481 - Directory Listing
Modified Thu Oct 20 09:01:57 2005 UTC (7 years, 8 months ago) by fw

 r613@deneb:  fw | 2005-10-13 22:02:21 +0200
 bin/tracker.cgi (print_bug):
   No longer claim that Debian is not affected when it might be.

---

Revision 2478 - Directory Listing
Modified Thu Oct 20 09:01:15 2005 UTC (7 years, 8 months ago) by fw

 r304@deneb:  fw | 2005-10-01 11:19:27 +0200
 Add overview page for the stable suite.
 
 bin/tracker.cgi (print_stable_status):
   New function.
 lib/python/security_db.py (DB.initSchema):
   Add stable_status view.

---

Revision 2471 - Directory Listing
Modified Thu Oct 20 04:58:38 2005 UTC (7 years, 8 months ago) by joeyh

fix a bug in processing of multiple bugs in one line

---

Revision 2468 - Directory Listing
Modified Thu Oct 20 00:40:22 2005 UTC (7 years, 8 months ago) by joeyh

add a program to manage usertags in the bts

---

Revision 2467 - Directory Listing
Modified Wed Oct 19 23:53:49 2005 UTC (7 years, 8 months ago) by joeyh

update for slight html changes (really should use the xml..)

---

Revision 2458 - Directory Listing
Modified Wed Oct 19 22:54:03 2005 UTC (7 years, 8 months ago) by joeyh

mods for CVE merge

---

Revision 2431 - Directory Listing
Modified Mon Oct 17 22:24:52 2005 UTC (7 years, 8 months ago) by joeyh

aha, I missed some syntax changes here

---

Revision 2336 - Directory Listing
Modified Thu Oct 6 19:50:53 2005 UTC (7 years, 8 months ago) by joeyh

drop issues affecting only the hurd

---

Revision 2305 - Directory Listing
Modified Tue Oct 4 20:18:37 2005 UTC (7 years, 8 months ago) by joeyh

support <removed>

---

Revision 2264 - Directory Listing
Modified Sat Oct 1 18:20:13 2005 UTC (7 years, 8 months ago) by joeyh

support whitespace after { in cross-references to be robust

---

Revision 2253 - Directory Listing
Modified Fri Sep 30 13:07:44 2005 UTC (7 years, 8 months ago) by neilm

Updated mirror url. Not sure if it'll make it work, but it may do :)

---

Revision 2240 - Directory Listing
Modified Thu Sep 29 21:06:02 2005 UTC (7 years, 8 months ago) by fw

Add tons of missing epochs in versions.

http://idssi.enyo.de/tracker/data/missing-epochs contains a list of
problematic source packages.  The remaining ones should be okay.

---

Revision 2225 - Directory Listing
Modified Thu Sep 29 12:40:28 2005 UTC (7 years, 8 months ago) by fw

Commit the tracker.cgi Python script.

Sorry, this script is a complete mess. 8-(

---

Revision 2168 - Directory Listing
Modified Sat Sep 24 21:42:05 2005 UTC (7 years, 8 months ago) by joeyh

fix

---

Revision 2161 - Directory Listing
Modified Sat Sep 24 20:42:44 2005 UTC (7 years, 8 months ago) by joeyh

new RESERVED and REJECTED

---

Revision 2155 - Directory Listing
Modified Sat Sep 24 15:35:43 2005 UTC (7 years, 8 months ago) by fw

bin/update-db:
  Improve reporting of syntax errors.

---

Revision 2145 - Directory Listing
Modified Sat Sep 24 03:58:31 2005 UTC (7 years, 8 months ago) by joeyh

deal with notfixed change

---

Revision 2088 - Directory Listing
Modified Thu Sep 22 12:00:31 2005 UTC (7 years, 8 months ago) by fw

lib/python/security_db.py (DB.initSchema):
  Add removed_packages table.
(DB.readRemovedPackages, DB.getUnknownPackages):
  New.

bin/update-db:
  Read removed packages.

data/packages/removed-packages:
  New file.

---

Revision 2000 - Directory Listing
Modified Thu Sep 15 15:00:32 2005 UTC (7 years, 9 months ago) by fw

Commit early if we are creating a new file.  This means that the work is
not wasted if an error occurs later.

---

Revision 1994 - Directory Listing
Modified Thu Sep 15 10:11:44 2005 UTC (7 years, 9 months ago) by fw

Implement bin/update-db, to update the database with a single command.
Most processing is skipped if no input files have been modified.

lib/python/security_db.py (SchemaMismatch):
  New exception.
(DB):
  Handle schema versioning.
(DB.initSchema):
  Add subrelease column to source_packages and binary_packages.
  Set user_version.
  Remove stray commit.
(DB._parseFile):
  Return information to the caller if the file is unchanged.
(DB.readPackages):
  Move deletion code to callees.
(DB._readSourcePackages, DB._readBinaryPackages):
  Implement incremental updates.  Add subrelease.
  Need to invoke _clearVersions if any changes are made.
(DB.deleteBugs, DB.finishBugs):
  Moved into readBugs.
(DB.insertBugs):
  Rename ...
(DB.readBugs):
  ... to this one.  Implement incremental updates.
  Invoke _clearVersions if necessary.
(DB._clearVersions):
  Add.
(DB._updateVersions):
  Skip processing if _clearVersions has not been invoked.
(DB.getVersion, DB.releaseContainsPackage, DB._synthesizeReleases):
  Obsolete, remove.
(test):
  Update.

lib/python/bugs.py (CANFile, CVEFile):
  Split into two classes, which handle the differences between the two
  files.

bin/check-syntax:
  Update accordingly.

bin/update-db:
  New database update script.  Implements incremental updates.

Makefile:
  Remove references to bin/update-packages.  Simplify drastically.

---

Revision 1983 - Directory Listing
Modified Wed Sep 14 20:48:54 2005 UTC (7 years, 9 months ago) by fw

This change groups binary packages for different architectures, as long
as they have the same version.  Synthesis of testing/stable/oldstable
has been disabled (and will be replaced with new code).

lib/python/security_db.py (mergeLists):
  New helper functions to deal with architecture lists.
(DB.initSchema):
  Add parsed column to inodeprints table.
  Update source_packages and binary_packages table.
  Split package_status into source_package_status and
  binary_package_status.
(DB.updateSources, DB.updatePackages):
  Remove and replace with ...
(DB.readPackages):
  ... new method.
(DB.availableReleases, DB._updateVersions):
  Adjust to new schema.
(DB.calculateVulnerabilities):
  Disable synthesis of testing etc.
  Adjust to new schema.
  Fix bug in large INSERT INTO statements: Need t.release = p.release
  instead of t.release = n.release.
  Add return to disable bug-specific rating code.
(test):
  Update.

lib/python/bugs.py (PackageNote.releaseStatus):
  Rename ...
(PackageNote.sourceStatus):
  ... and make it specific to source packages.
(BugFromDB.getDebianBugs):
  New method to get a list of Debian bug numbers.

bin/update-packages (import):
  Automatically reads the correct directory.

Makefile (stamps/packages-imported):
  Update accordingly.

---

Revision 1982 - Directory Listing
Modified Wed Sep 14 19:20:56 2005 UTC (7 years, 9 months ago) by joeyh

clean up temp file

---

Revision 1977 - Directory Listing
Modified Wed Sep 14 13:27:19 2005 UTC (7 years, 9 months ago) by fw

Ongoing work to implement version tracking.  The current approach does
not scale with the number of architectures, though.

lib/python/security_db.py (DB):
  Add nicknames member.
(DB.initSchema):
  Add nicknames and package_status tables.
  Add index package_notes_bug.
(DB._synthesizeReleases):
  New method to build testing etc. distributions.
(DB.calculateVulnerabilities):
  Update to use new tables.  Return list of problems detected.

lib/python/bugs.py (PackageNote.releaseStatus):
  New method to check for affected releases.

bin/update-vulnerabilities:
  Print list of detected problems.

---

Revision 1973 - Directory Listing
Modified Wed Sep 14 08:59:50 2005 UTC (7 years, 9 months ago) by fw

Add table version_linear_order, which will enable us to make version
comparisons in pure SQL.

lib/python/security_db.py (DB):
  Add verbose flag to constructor.
(DB.initSchema):
  Add table version_linear_order.  Add version ID fields to tables
  package_notes, source_packages, binary_packages.
(DB._maybeUpdate):
  Use self.verbose.
(DB.availableReleases):
  New method to get a least of releases in the database.
(DB._updateVersions):
  Calculate a linear order of versions.  This will be used to speed up
  the vulnerability rating process.
(DB.calculateVulnerabilities):
  Invoke _updateVersions.  Use self.verbose.

bin/update-vulnerabilities, bin/update-packages:
  Set database verbose flag.

---

Revision 1951 - Directory Listing
Modified Tue Sep 13 14:08:22 2005 UTC (7 years, 9 months ago) by fw

First step towards calculating sets of vulnerable packages.  This is
currently directed towards testing (but does not yet process the
secure-testing archive).

A new table is added, so "make clean" is required.

The remaining problem (besides potential bugs in the code) is how to
deal with kernel updates, IOW how to detect them and ignore them.

bin/update-vulnerabilities:
  New script, updates the bugs_status table.

lib/python/bugs.py (PackageNote.affects):
  Fix all kinds of errors.  The code never ran before, it seems. 8-/
(PackageNote.fixedVersion):
  Add.
(BugBase.hasTODO):
  Add.
(BugReservedCVE, BugRejectedCVE):
  Mark as not-for-us.
(FileBase.rawRecords):
  Mark all un-annotated bugs after STOP: field as not-for-us.

lib/python/security_db.py (DB.initSchema):
  Add table bugs_status.
(DB.finishBugs):
  Run to completion even if there are conflicting CAN/CVE entries.
(DB.getVersion, calculateVulnerabilities):
  New methods.
(test):
  Update.

lib/python/debian_support.py (Version):
  Add a type check.

Makefile:
  Add stamps/calc-vulns target.

bin/update-packages:
  Fix typo in comment.

---

Revision 1947 - Directory Listing
Modified Tue Sep 13 09:12:19 2005 UTC (7 years, 9 months ago) by fw

Add support for downloading Packages and Sources files.

After this change, you must run "make clean update-packages all" to
download the package data.

lib/python/security_db.py(DB.initSchema):
  Add table inodeprints.
(DB.filePrint, DB._maybeUpdate, DB.maybeUpdateSources,
DB.maybeUpdatePackages):
  Add.
(test):
  Update to new file locations.

bin/update-packages:
  New file.  Used by the makefile.

data/packages:
  New directory.  Used to store the downloaded files.

Makefile:
  Add "update-packages" and "clean" targets, and the necessary targets
  to support them.

---

Revision 1943 - Directory Listing
Modified Tue Sep 13 07:45:17 2005 UTC (7 years, 9 months ago) by fw

bin/apt-update-file:
  Remove unnecessary import.

lib/python/debian_support.py (listReleases):
  Add "sid".
(replaceFile):
  Remove temporary file on exception.
(updateFile):
  The file constructor raises IOError if the file does not exist.
  urllib does not raise a proper exception on 4xx errors.
  Handle varying whitespace in SHA1-Current field.

---

Revision 1939 - Directory Listing
Modified Mon Sep 12 20:08:46 2005 UTC (7 years, 9 months ago) by fw

lib/python/debian_support.py:
  Add support for downloading package file diffs.

bin/apt-update-file:
  Driver script for the new functionality.

(I will use this functionality to implement package database
replication.  The goal is to keep a local copy of all the interesting
data, so that we no longer need to consult madison etc.)

---

Revision 1937 - Directory Listing
Modified Mon Sep 12 17:12:08 2005 UTC (7 years, 9 months ago) by fw

lib/python/debian_support.py (ParseError):
  Add class.

lib/python/debian_support.py (PackageFile.raiseSyntaxError):o
  Raise ParseError instead of SyntaxError.

bin/check-syntax, bin/update-bug-list-db:
  Handle the ParseError exception gracefully.

lib/python/bugs.py (CVEFile.matchHeader):
  Check parentheses/brackets.

data/CAN/list:
  Fix uncovered syntax errors.

---

Revision 1936 - Directory Listing
Modified Mon Sep 12 16:46:36 2005 UTC (7 years, 9 months ago) by fw

lib/python/security_db.py (DB.finishBugs):
   Fix reporting of consistency check failures.

bin/update-bug-list-db:
   Do not print "error: " prefixes.

---

Revision 1934 - Directory Listing
Modified Mon Sep 12 16:32:23 2005 UTC (7 years, 9 months ago) by fw

Add list parser written in Python.

"make check" runs a syntax check (no SQLite required).  "make all"
updates the SQLite database, and performs cross-list consistency checks.

There is some support for loading Debian Package/Sources files, but this
information is currently not used by the checks.

---

Revision 1902 - Directory Listing
Modified Sat Sep 10 15:58:27 2005 UTC (7 years, 9 months ago) by joeyh

remove unimportant from the key

---

Revision 1900 - Directory Listing
Modified Sat Sep 10 14:53:32 2005 UTC (7 years, 9 months ago) by joeyh

don't display unimportant issues

---

Revision 1889 - Directory Listing
Modified Fri Sep 9 22:01:18 2005 UTC (7 years, 9 months ago) by joeyh

typos

---

Revision 1888 - Directory Listing
Modified Fri Sep 9 22:00:01 2005 UTC (7 years, 9 months ago) by joeyh

show DTSA fixed issues in green

---

Revision 1887 - Directory Listing
Modified Fri Sep 9 21:49:35 2005 UTC (7 years, 9 months ago) by joeyh

deal with moritz's new not-afected thing

---

Revision 1838 - Directory Listing
Modified Wed Sep 7 16:12:45 2005 UTC (7 years, 9 months ago) by joeyh

website and archive url changes

---

Revision 1815 - Directory Listing
Modified Sun Sep 4 21:08:50 2005 UTC (7 years, 9 months ago) by neilm

Now doesn't ignore last item in DTSA/list

---

Revision 1809 - Directory Listing
Modified Sun Sep 4 19:22:24 2005 UTC (7 years, 9 months ago) by joeyh

add links to DTSA pages

---

Revision 1794 - Directory Listing
Modified Sat Sep 3 13:30:06 2005 UTC (7 years, 9 months ago) by neilm

Web listings of DTSAs now available

---

Revision 1772 - Directory Listing
Modified Thu Sep 1 20:24:57 2005 UTC (7 years, 9 months ago) by joeyh

one more warning

---

Revision 1771 - Directory Listing
Modified Thu Sep 1 20:13:16 2005 UTC (7 years, 9 months ago) by joeyh

fix $id scoping

---

Revision 1770 - Directory Listing
Modified Thu Sep 1 20:04:41 2005 UTC (7 years, 9 months ago) by joeyh

work around further warnings for recording stuff with no item ids

---

Revision 1769 - Directory Listing
Modified Thu Sep 1 19:58:54 2005 UTC (7 years, 9 months ago) by joeyh

another bug caught by strict

---

Revision 1768 - Directory Listing
Modified Thu Sep 1 19:37:48 2005 UTC (7 years, 9 months ago) by joeyh

fix a warning on undefined item

---

Revision 1767 - Directory Listing
Modified Thu Sep 1 19:34:16 2005 UTC (7 years, 9 months ago) by joeyh

fix a wrong comment

---

Revision 1766 - Directory Listing
Modified Thu Sep 1 19:31:46 2005 UTC (7 years, 9 months ago) by joeyh

remove /tmp race

---

Revision 1765 - Directory Listing
Modified Thu Sep 1 19:29:08 2005 UTC (7 years, 9 months ago) by joeyh

make warning and strict safe

---

Revision 1763 - Directory Listing
Modified Thu Sep 1 17:50:06 2005 UTC (7 years, 9 months ago) by neilm

Now it actually dows work with DTSAs.

---

Revision 1750 - Directory Listing
Modified Wed Aug 31 16:53:15 2005 UTC (7 years, 9 months ago) by neilm

Added DTSA checking

---

Revision 1695 - Directory Listing
Modified Sun Aug 28 15:42:56 2005 UTC (7 years, 9 months ago) by joeyh

newline

---

Revision 1693 - Directory Listing
Modified Sun Aug 28 15:31:24 2005 UTC (7 years, 9 months ago) by joeyh

output improvements

---

Revision 1692 - Directory Listing
Modified Sun Aug 28 15:29:17 2005 UTC (7 years, 9 months ago) by joeyh

fix

---

Revision 1691 - Directory Listing
Modified Sun Aug 28 15:27:40 2005 UTC (7 years, 9 months ago) by joeyh

fixes

---

Revision 1690 - Directory Listing
Modified Sun Aug 28 15:21:10 2005 UTC (7 years, 9 months ago) by joeyh

maybe it will work now...

---

Revision 1689 - Directory Listing
Modified Sun Aug 28 14:59:13 2005 UTC (7 years, 9 months ago) by joeyh

drop the sudo, it will run as katie

---

Revision 1680 - Directory Listing
Modified Sat Aug 27 19:26:24 2005 UTC (7 years, 9 months ago) by joeyh

add change minimisation code

---

Revision 1679 - Directory Listing
Modified Sat Aug 27 19:12:28 2005 UTC (7 years, 9 months ago) by joeyh

and some more..

---

Revision 1678 - Directory Listing
Modified Sat Aug 27 19:11:31 2005 UTC (7 years, 9 months ago) by joeyh

let's try to make it actually work..

---

Revision 1677 - Directory Listing
Modified Sat Aug 27 19:05:18 2005 UTC (7 years, 9 months ago) by joeyh

forgot glob

---

Revision 1676 - Directory Listing
Modified Sat Aug 27 18:59:54 2005 UTC (7 years, 9 months ago) by joeyh

added dtsasync

---

Revision 1672 - Directory Listing
Added Sat Aug 27 17:07:18 2005 UTC (7 years, 9 months ago) by joeyh

Moved programs into bin directory so data can be auto-updated w/o opening
any potential holes for committers who lack access to the machine running
the update. AKA my paranioa finally caught up to me.

Didn't move DTSA still since it will be rewritten anyway.