Log of /data/ospu-candidates.txt

---

Revision 16203 - (view) (download) (annotate) - [select for diffs]
Modified Sat Feb 19 20:37:31 2011 UTC (2 years, 2 months ago) by nion
File length: 9737 byte(s)
Diff to previous 16192

o/spu candidate magpierss

---

Revision 16192 - (view) (download) (annotate) - [select for diffs]
Modified Fri Feb 18 01:23:15 2011 UTC (2 years, 2 months ago) by geissert
File length: 9700 byte(s)
Diff to previous 16188

php5 won't be updated via {o,}spu

thanks for the help, but no, I won't be releasing a DSA and then
another update via {o,}spu for sec issues.

---

Revision 16188 - (view) (download) (annotate) - [select for diffs]
Modified Thu Feb 17 12:07:47 2011 UTC (2 years, 2 months ago) by nion
File length: 9782 byte(s)
Diff to previous 16183

CVE-2011-0420 no-dsa

---

Revision 16183 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 16 23:12:30 2011 UTC (2 years, 3 months ago) by jmw
File length: 9701 byte(s)
Diff to previous 16166

gif2png prsc liason

---

Revision 16166 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 16 13:35:26 2011 UTC (2 years, 3 months ago) by nion
File length: 9672 byte(s)
Diff to previous 16164

new feh tmp race, no-dsa

---

Revision 16164 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 16 13:15:01 2011 UTC (2 years, 3 months ago) by jmw
File length: 9624 byte(s)
Diff to previous 16159

krb5 is a candidate
asterisk/avahi fixed

---

Revision 16159 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 16 09:01:39 2011 UTC (2 years, 3 months ago) by jmm
File length: 9714 byte(s)
Diff to previous 16152

mailman CVEfied
magpierss no-dsa

---

Revision 16152 - (view) (download) (annotate) - [select for diffs]
Modified Tue Feb 15 16:57:24 2011 UTC (2 years, 3 months ago) by jmm
File length: 9675 byte(s)
Diff to previous 16122

- stunnel, pidgin no-dsa
- 2008 eclipse issue already fixed before, 2010 fixed in sid
- one kfreebsd issue fixed long ago, the other no-dsa

---

Revision 16122 - (view) (download) (annotate) - [select for diffs]
Modified Sun Feb 13 13:54:26 2011 UTC (2 years, 3 months ago) by jmm
File length: 9541 byte(s)
Diff to previous 16087

gif2png fixed

---

Revision 16087 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 9 18:46:59 2011 UTC (2 years, 3 months ago) by jmw
File length: 9490 byte(s)
Diff to previous 16063

Remove unneeded ospu candidates

---

Revision 16063 - (view) (download) (annotate) - [select for diffs]
Modified Sat Feb 5 13:09:41 2011 UTC (2 years, 3 months ago) by jmm
File length: 9651 byte(s)
Diff to previous 16062

mediatomb no-dsa

---

Revision 16062 - (view) (download) (annotate) - [select for diffs]
Modified Sat Feb 5 12:59:25 2011 UTC (2 years, 3 months ago) by jmm
File length: 9552 byte(s)
Diff to previous 16037

four new minor issues from Ubuntu reported by Kees, all no-dsa

---

Revision 16037 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 2 20:26:18 2011 UTC (2 years, 3 months ago) by jmm
File length: 9406 byte(s)
Diff to previous 16036

eclipse bugnum and spu candidate

---

Revision 16036 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 2 20:23:00 2011 UTC (2 years, 3 months ago) by jmm
File length: 9355 byte(s)
Diff to previous 16035

add file for squeeze

---

Revision 16035 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 2 20:22:09 2011 UTC (2 years, 3 months ago) by jmm
File length: 9352 byte(s)
Copied from: data/spu-candidates.txt revision 16032
Diff to previous 16030

rename spu-candidates to ospu-candidate to allow us to
track Squeeze

---

Revision 16030 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 2 07:35:18 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 9352 byte(s)
Diff to previous 16010

- new postgres issue
- sssd tpu
- various CVE assignments
- mingetty, numpy no-dsa

---

Revision 16010 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 30 14:37:58 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 9215 byte(s)
Diff to previous 15999

maradns NMUd

---

Revision 15999 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 28 17:46:21 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 9172 byte(s)
Diff to previous 15995

- egroupware/kses not-affected
- liboggz, mercurial, greylistd, dbus-glib no-dsa
- libxml2 issue is actually a php issue
- proftpd fixed
- pixelpost removed
- yet another weborf issue
- new nbd issue

---

Revision 15995 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 28 08:34:34 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8905 byte(s)
Diff to previous 15991

add latest oo.o issues, not tracking libreoffice yet, we can start
once it has been uploaded initially to unstable

---

Revision 15991 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 27 22:05:19 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8870 byte(s)
Diff to previous 15967

hypermail no-dsa
puppet issue doesn't affect Lenny

---

Revision 15967 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 25 21:49:15 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8831 byte(s)
Diff to previous 15966

NFUs
new minor pam issues
two ffmpeg issues (probably related to CVE-2010-0480)

---

Revision 15966 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 25 21:35:04 2011 UTC (2 years, 3 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8788 byte(s)
Diff to previous 15891

sssd NMUed
offlineimap no-dsa
filed bugs for qemu and mojarra

---

Revision 15891 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 16 01:34:33 2011 UTC (2 years, 4 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8732 byte(s)
Diff to previous 15890

mono-debugger no-dsa

---

Revision 15890 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 16 01:23:58 2011 UTC (2 years, 4 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8689 byte(s)
Diff to previous 15859

centerim no-dsa
matrixssl no-dsa
add spu notifications

---

Revision 15859 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 14 21:28:21 2011 UTC (2 years, 4 months ago) by jmm
Original Path: data/spu-candidates.txt
File length: 8555 byte(s)
Diff to previous 15627

gnome-subtitles no-dsa

---

Revision 15627 - (view) (download) (annotate) - [select for diffs]
Modified Mon Nov 29 17:45:12 2010 UTC (2 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8510 byte(s)
Diff to previous 15623

new python path issues

---

Revision 15623 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 28 18:28:24 2010 UTC (2 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8381 byte(s)
Diff to previous 15619

record latest point release

---

Revision 15619 - (view) (download) (annotate) - [select for diffs]
Modified Sat Nov 27 12:09:05 2010 UTC (2 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8467 byte(s)
Diff to previous 15536

- new chrome/webkit issues
- new library path issues in banshee, gnome-shell, gnucash, tomboy
- vim issue Windows-specific
- one typo3 issue was fixed in previous DSA
- NFUs

---

Revision 15536 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 28 21:31:39 2010 UTC (2 years, 6 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8363 byte(s)
Diff to previous 15506

- ember fixed
- two more dovecot issues (fixed in Squeeze, N/A in Lenny)
- new mozilla issue and various mozilla updates
- postgresql9 issue (sid only)
- new python issue (already fixed in 3.1, 2.6 and 2.5 still needed)
- eglibc issue unimportant
- NFUs
- mantis fixed

---

Revision 15506 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 23 12:29:23 2010 UTC (2 years, 6 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8348 byte(s)
Diff to previous 15460

ust fixed
new issues in fusionforge and flash-kernel

---

Revision 15460 - (view) (download) (annotate) - [select for diffs]
Modified Tue Oct 12 11:38:44 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8294 byte(s)
Diff to previous 15434

- torcs fixed and no-dsa
- typo3 CVEfied

---

Revision 15434 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 7 06:58:25 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8259 byte(s)
Diff to previous 15413

- tau, python-cjson fixed

---

Revision 15413 - (view) (download) (annotate) - [select for diffs]
Modified Sun Oct 3 20:43:54 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8218 byte(s)
Diff to previous 15404

- lastfm, roaraudio, ike no-dsa
- mahara/tinymce code copy fixed
- otrs fixed
- cleanup older issues

---

Revision 15404 - (view) (download) (annotate) - [select for diffs]
Modified Thu Sep 30 21:02:01 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8124 byte(s)
Diff to previous 15398

- fix spu version number for libpoe-component-irc-perl
- record lenny kernel point update fixes
- mark several issues not affecting lenny kernel
- scilab and teamspeak are non-free and no-dsa

---

Revision 15398 - (view) (download) (annotate) - [select for diffs]
Modified Thu Sep 30 09:22:29 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8019 byte(s)
Diff to previous 15387

- ardour and magics++ fixed
- bristol and ardour not in Lenny, remove no-dsa tags and spu-candidates entry
- bug filed for mysql

---

Revision 15387 - (view) (download) (annotate) - [select for diffs]
Modified Wed Sep 29 17:26:54 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8092 byte(s)
Diff to previous 15384

- multiple CVE IDs assigned for typo3 DSA
- ardour and brostol fixed and no-dsa for Lenny
- new Chromium/Webkit issue
- NFUs

Further cleanups of issues w/o a CVE ID:
- remove /dev/mem entry, this is a hardening feature not a vulnerability
- remove gmanedit and warzone entries, not a vulnerability as config
  files are under local control
- remove duplicated piwigo entry

---

Revision 15384 - (view) (download) (annotate) - [select for diffs]
Modified Tue Sep 28 17:51:01 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8019 byte(s)
Diff to previous 15383

xserver spu upload
new piwigo issue (fixed in squeeze, not in lenny)
record clamav/bzip2 issue

---

Revision 15383 - (view) (download) (annotate) - [select for diffs]
Modified Tue Sep 28 15:10:01 2010 UTC (2 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 8054 byte(s)
Diff to previous 15251

- new clamav issue (already fixed in sid)
- qtparted and dropbox: fixed and no-dsa
- add srcpkg names for new poppler issues
- mydms has been removed
- new wireshark issue no-dsa, only code injection bugs are treated as DSA-worthy issues

---

Revision 15251 - (view) (download) (annotate) - [select for diffs]
Modified Wed Sep 1 16:54:03 2010 UTC (2 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7975 byte(s)
Diff to previous 15243

- remove rejected LXR issue, mark remaining ones no-dsa
- libgdiplus stable point update
- remove one phpbb3 dupe, two no-dsa

---

Revision 15243 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 31 16:20:21 2010 UTC (2 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7911 byte(s)
Diff to previous 15123

- fix drupal c&p error
- no-dsa: libhx, libgdiplus, mapserver
- fix phpmyadmin entry, was still marked as unfixed for lenny

---

Revision 15123 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 3 20:16:37 2010 UTC (2 years, 9 months ago) by luciano
Original Path: data/spu-candidates.txt
File length: 7848 byte(s)
Diff to previous 15116

#581194 is a spu candidate

---

Revision 15116 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 3 17:55:04 2010 UTC (2 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7785 byte(s)
Diff to previous 15100

socat fixed
exim no-dsa

---

Revision 15100 - (view) (download) (annotate) - [select for diffs]
Modified Mon Aug 2 04:45:59 2010 UTC (2 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7722 byte(s)
Diff to previous 15055

prewikka no-dsa

---

Revision 15055 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jul 29 04:29:43 2010 UTC (2 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7683 byte(s)
Diff to previous 15026

- qt issue got a separate CVE ID
- mako fixed in sid, no-dsa for Lenny

---

Revision 15026 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jul 27 02:59:06 2010 UTC (2 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7624 byte(s)
Diff to previous 14951

- fix incorrect Plone NFU
- spu status updates
- openttd CVEfied
- libesmtp fixed
- Mozilla fixes
- new rpcbind issue

---

Revision 14951 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jul 2 17:51:39 2010 UTC (2 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7523 byte(s)
Diff to previous 14945

- NFUs
- redmine not in Lenny
- rewrite old kdebase entry
- rewrite old rails entry
- fastjar fixed
- remove policykit TODO, has been removed
- webkit issue is in Ruby
- old OO exploit never appeared, mark as NFU. If there ever is
  one, we'll learn about it anyway
- remove a few obsolete TODOs

---

Revision 14945 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jul 1 20:19:08 2010 UTC (2 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7465 byte(s)
Diff to previous 14935

- moodle fixed
- adapt severity of tiff crashers; without real security impact
- bugnums
- acidbase issue (mostly fixed, all no-dsa)
- rewrite cherokee entry

---

Revision 14935 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 30 17:25:28 2010 UTC (2 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7419 byte(s)
Diff to previous 14916

- three new bugzilla issues, two not-affected, one no-dsa
- new minor xulrunner issue, one xulrunner issue not-affected
- Fix openjdk srcpkg name
- remove a few old undetermined entries for webkit copies for new,
  we won't be able to realistically triage/support them if
  this isn't even done upstream

---

Revision 14916 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jun 28 17:34:16 2010 UTC (2 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7358 byte(s)
Diff to previous 14897

- pgp4pine removed
- squirrelmail already tracked by separate ID
- remove spu entries for issues fixed in latest point release
- mono fix was uploaded to unstable
- another slim issue was fixed in 5.0.5 point update
- 5.0.5 point update also introduced fixed sun-java[56] packages
- ziproxy fixed
- feh fixed
- new issues in wget (dsa), lftp (dsa) and libwww-perl (no-dsa)
- bug filed for w3m/ssl validation
- convert older safari TODOs to undetermined entries
- bug filed for tomcat6 information disclosure

---

Revision 14897 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 23 20:29:12 2010 UTC (2 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7603 byte(s)
Diff to previous 14874

- new squirrelmail non-issue (Thijs, please change severity
  if you disagree)
- pyftpd fixed in spu upload
- hamlib/ltdl code copy fixed
- multiple moodle issues fixed
- new moodle issues
- new htmlpurifier issue
- new bozohttpd issues
- horde not affected by Xinha issue
- new ziproxy issue not in Lenny
- activeldap prototype.js code copy fixed
- mono fixed
- new round of mozilla issues, already fixed in unstable and experimental for
  xulrunner and in iceape
- two new pscs assignments already covered by CVE ID from DSA
- new fastjar issue no-dsa
- xen issue is in the Hypervisor, not the kernel (but already fixed anyway)

---

Revision 14874 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jun 15 22:07:45 2010 UTC (2 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7559 byte(s)
Diff to previous 14842

- new minor w3m issue
- notified maintainer on pyftpd spu upload, he's preparing one
- deluge of new webkit issues

---

Revision 14842 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 9 21:47:47 2010 UTC (2 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7450 byte(s)
Diff to previous 14828

python no-dsa

---

Revision 14828 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jun 7 22:57:20 2010 UTC (2 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7266 byte(s)
Diff to previous 14734

openssl spu fix

---

Revision 14734 - (view) (download) (annotate) - [select for diffs]
Modified Mon May 24 10:17:15 2010 UTC (2 years, 11 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 7315 byte(s)
Diff to previous 14606

spu notifications
nano issues fixed in spu

---

Revision 14606 - (view) (download) (annotate) - [select for diffs]
Modified Wed May 5 19:42:44 2010 UTC (3 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7307 byte(s)
Diff to previous 14529

- libnss-db no-dsa
- remove duplicated theora entry

---

Revision 14529 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 19 22:34:53 2010 UTC (3 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7268 byte(s)
Diff to previous 14497

- rewrite clamav with EOL tag
- couchdb fixed
- two fixes in Sun Java 6
- couchdb no-dsa
- begin qt4-x11 triage

---

Revision 14497 - (view) (download) (annotate) - [select for diffs]
Modified Thu Apr 15 21:29:17 2010 UTC (3 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7231 byte(s)
Diff to previous 14483

new typo3 issue

---

Revision 14483 - (view) (download) (annotate) - [select for diffs]
Modified Wed Apr 14 17:49:41 2010 UTC (3 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7182 byte(s)
Diff to previous 14482

abcm2ps no-dsa
tla spu fixes

---

Revision 14482 - (view) (download) (annotate) - [select for diffs]
Modified Wed Apr 14 17:41:59 2010 UTC (3 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7151 byte(s)
Diff to previous 14470

- logrotate no-dsa
- fix source package names for kdm
- add refs to texlive issues

---

Revision 14470 - (view) (download) (annotate) - [select for diffs]
Modified Tue Apr 13 21:44:56 2010 UTC (3 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6987 byte(s)
Diff to previous 14439

- konversation not-affected
- trac no-dsa
- more information on RTSP issue affecting mplayer and VLC
- opendchub not-affected in Lenny
- tgt fixed

---

Revision 14439 - (view) (download) (annotate) - [select for diffs]
Modified Thu Apr 8 21:32:50 2010 UTC (3 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6961 byte(s)
Diff to previous 14420

- new mediawiki issue
- new udisks issue
- imp no-dsa

---

Revision 14420 - (view) (download) (annotate) - [select for diffs]
Modified Tue Apr 6 21:52:24 2010 UTC (3 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6927 byte(s)
Diff to previous 14398

- opendchub CVEfied
- new libnss-db issue
- latest round of mozilla issues affects icedove as well
- emacsen movemail issues no-dsa
- fix entry for fwbuilder
- squid not affected by slowloris attack
- postgres no-dsa
- arora issue a non-issue
- one libesmtp issue fixed in 2008, the other one no-dsa

---

Revision 14398 - (view) (download) (annotate) - [select for diffs]
Modified Sun Apr 4 22:33:36 2010 UTC (3 years, 1 month ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 6889 byte(s)
Diff to previous 14351

submitted a couple bugs

---

Revision 14351 - (view) (download) (annotate) - [select for diffs]
Modified Mon Mar 29 17:08:32 2010 UTC (3 years, 1 month ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 6830 byte(s)
Diff to previous 14249

spu notifications

---

Revision 14249 - (view) (download) (annotate) - [select for diffs]
Modified Thu Mar 11 19:44:35 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6562 byte(s)
Diff to previous 14241

- mod-security fixed
- cpio fixed
- removed temp entries for moin issues already CVEfied

---

Revision 14241 - (view) (download) (annotate) - [select for diffs]
Modified Wed Mar 10 20:26:46 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6607 byte(s)
Diff to previous 14226

- libpurple/qutecom code copy fixed
- new minor mediawiki issues
- cpio/tar maintainers notified about no-dsa for minor rmt issue

---

Revision 14226 - (view) (download) (annotate) - [select for diffs]
Modified Mon Mar 8 22:47:00 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6516 byte(s)
Diff to previous 14218

ftpd no-dsa

---

Revision 14218 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 7 22:51:17 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6470 byte(s)
Diff to previous 14214

openssl no-dsa

---

Revision 14214 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 7 21:03:17 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6421 byte(s)
Diff to previous 14212

puppet no-dsa
bugnums for linux-ftpd and libesmtp
samba/dir trav no-dsa
fix bugnum for kfreebsd

---

Revision 14212 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 7 20:19:00 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6354 byte(s)
Diff to previous 14210

shibboleth no-dsa
esmtp unimportant
sudo unimportant
add cups bugnum

---

Revision 14210 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 7 18:59:14 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6259 byte(s)
Diff to previous 14208

filed bugs for cups and ncpfs issues

---

Revision 14208 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 7 18:47:06 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6214 byte(s)
Diff to previous 14206

- filed bug for ncpfs issues, no-dsa for Lenny
- fcron maintainers notified for no-dsa status

---

Revision 14206 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 7 16:40:56 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6133 byte(s)
Diff to previous 14186

- mp4h fixed
- fcron no-dsa

---

Revision 14186 - (view) (download) (annotate) - [select for diffs]
Modified Thu Mar 4 21:02:52 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6207 byte(s)
Diff to previous 14185

- squid bugnums
- new xar issue

---

Revision 14185 - (view) (download) (annotate) - [select for diffs]
Modified Thu Mar 4 16:58:17 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6044 byte(s)
Diff to previous 14136

- libpng no-dsa
- new moin issues fixed
- fix version for sudo NMU
- annotate the split for CVE-2009-3297 (splitting this several weeks after
  multiple issues have been released really sucks)
- asterisk design issue discussed with maintainers, no update planned
- fix typo in wordpress source package name
- flex fixed even before Lenny

---

Revision 14136 - (view) (download) (annotate) - [select for diffs]
Modified Mon Feb 22 18:10:14 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6021 byte(s)
Diff to previous 14124

- webworker issues affects Firefox 3.0 according to Mozilla
- remove dead ITP for webmin
- iceape fixed
- don't treat pidgin as unimportant
- ircd-hybrid fixed
- automake1.10 fixed
- makepasswd fixed
- overkill fixed
- pyfribidi fixed
- python-4suite fixed

---

Revision 14124 - (view) (download) (annotate) - [select for diffs]
Modified Thu Feb 18 20:52:00 2010 UTC (3 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5985 byte(s)
Diff to previous 14019

hamlib fixed
kde4libs no-dsa
gnome-screensaver fix in unstable, dupe of existing issue?

---

Revision 14019 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 3 18:39:30 2010 UTC (3 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5970 byte(s)
Diff to previous 13984

- acl fixed
- xotcl fixed by using system copy of expat
- asterisk issue unstable/testing only
- acl/struts no-dsa

---

Revision 13984 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 31 19:52:48 2010 UTC (3 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5870 byte(s)
Diff to previous 13977

centerim spu

---

Revision 13977 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 30 21:54:10 2010 UTC (3 years, 3 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5928 byte(s)
Diff to previous 13974

spu notifications

---

Revision 13974 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 30 19:11:22 2010 UTC (3 years, 3 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5880 byte(s)
Diff to previous 13973

stable point update

---

Revision 13973 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 30 19:03:23 2010 UTC (3 years, 3 months ago) by jwilk-guest
Original Path: data/spu-candidates.txt
File length: 6171 byte(s)
Diff to previous 13969

docutils insecure usage of temporary files has been fixed in lenny.

---

Revision 13969 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 30 11:13:12 2010 UTC (3 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6220 byte(s)
Diff to previous 13938

ratbox fixed
filed bug for ytnef and fuse issues

---

Revision 13938 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 27 20:30:13 2010 UTC (3 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6178 byte(s)
Diff to previous 13932

more lenny triage

---

Revision 13932 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 27 18:34:28 2010 UTC (3 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5961 byte(s)
Diff to previous 13892

Lenny status triage:
- multiple no-dsa
- acidbase CVEfied
- ocsinventory unimportant

---

Revision 13892 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 24 13:52:13 2010 UTC (3 years, 3 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5639 byte(s)
Diff to previous 13848

New maradns minor issue

---

Revision 13848 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 17 18:15:10 2010 UTC (3 years, 3 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5542 byte(s)
Diff to previous 13777

dokuwiki triage
removed already uploaded spu/ospu

---

Revision 13777 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 10 13:11:25 2010 UTC (3 years, 4 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5718 byte(s)
Diff to previous 13697

NFU
spu notifications

---

Revision 13697 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 2 15:01:04 2010 UTC (3 years, 4 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5738 byte(s)
Diff to previous 13696

NFUs and ITPs
two minor network-manager issues

---

Revision 13696 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 2 09:30:05 2010 UTC (3 years, 4 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5571 byte(s)
Diff to previous 13678

SPU notifications

---

Revision 13678 - (view) (download) (annotate) - [select for diffs]
Modified Wed Dec 30 01:49:35 2009 UTC (3 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5520 byte(s)
Diff to previous 13640

- ltdl copy in bochs fixed
- libextractor ltdl fixed
- cups, asterisk no-dsa

---

Revision 13640 - (view) (download) (annotate) - [select for diffs]
Modified Thu Dec 24 10:44:32 2009 UTC (3 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5444 byte(s)
Diff to previous 13620

* imagemagick uses system copy of ltdl
* several no-dsa for ltdl issue
* new libhaml-ruby issue already fixed
* another expat no-dsa
* qt4 triage
* python expat issues should be fixed through DSAs

---

Revision 13620 - (view) (download) (annotate) - [select for diffs]
Modified Mon Dec 21 22:09:22 2009 UTC (3 years, 4 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5386 byte(s)
Diff to previous 13618

CVE-2009-4079 and CVE-2009-4078 fixed in redmine 0.9.0~svn2902-1
CVE-2009-3701 fixed in horde3 3.3.6+debian0-1
jbossas4 issues

---

Revision 13618 - (view) (download) (annotate) - [select for diffs]
Modified Mon Dec 21 18:55:22 2009 UTC (3 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5358 byte(s)
Diff to previous 13617

* mark several ltdl issues as no-dsa
* devil no-dsa
* jetty issues not in binary package
* record more openjdk fixes
* iceape in lenny only a stub package

---

Revision 13617 - (view) (download) (annotate) - [select for diffs]
Modified Mon Dec 21 18:29:24 2009 UTC (3 years, 4 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5323 byte(s)
Diff to previous 13558

spu notifications

---

Revision 13558 - (view) (download) (annotate) - [select for diffs]
Modified Tue Dec 15 19:26:38 2009 UTC (3 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5263 byte(s)
Diff to previous 13557

add python-docutils to spu candidates

---

Revision 13557 - (view) (download) (annotate) - [select for diffs]
Modified Tue Dec 15 18:53:59 2009 UTC (3 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5234 byte(s)
Diff to previous 13490

* updates on libtool issues
* xfig fixed
* zoph fixed
* liboggplay fixed
* update fixed version for firefox-sage
* wxwidgets code copies of expat fixed
* ayttm/expat fixed
* start readjusting some of the expat issue, calling most of
  them security issues is stretching things too far
* fix acpid entry
* xen fixed

---

Revision 13490 - (view) (download) (annotate) - [select for diffs]
Modified Tue Dec 8 17:09:50 2009 UTC (3 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5145 byte(s)
Diff to previous 13464

- updates on libtool code copies: 
  * snbc, dico and unixodbc use the system copy
  * hypre and babel fixed, but no-dsa for Lenny/Etch
- update poppler issue for code copies
- fix kfreebsd bug num
- new devil issue
- fix tracking for dstat

---

Revision 13464 - (view) (download) (annotate) - [select for diffs]
Modified Sun Dec 6 12:02:21 2009 UTC (3 years, 5 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 5075 byte(s)
Diff to previous 13374

- NFUs
- spu notifications

---

Revision 13374 - (view) (download) (annotate) - [select for diffs]
Modified Wed Nov 25 17:55:19 2009 UTC (3 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5004 byte(s)
Diff to previous 13339

new minor dstat issue

---

Revision 13339 - (view) (download) (annotate) - [select for diffs]
Modified Sat Nov 21 11:46:20 2009 UTC (3 years, 5 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4921 byte(s)
Diff to previous 13302

spu notifications
CVE-2009-3300 fixed in shibboleth-sp2 2.3+dfsg-1

---

Revision 13302 - (view) (download) (annotate) - [select for diffs]
Modified Tue Nov 17 18:08:03 2009 UTC (3 years, 6 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4881 byte(s)
Diff to previous 13165

- track grub2 fix for unstable, not experimental
- asterisk, kernel, xmltooling, net-snmp fixed
- various no-dsa
- remove dubious VulnDisco "issues" from the tracker
  until details are published
- old kvm issue doesn't affect us, CVE description is wrong,
  confirmed by KVM upstream

---

Revision 13165 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 1 10:45:03 2009 UTC (3 years, 6 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4804 byte(s)
Diff to previous 13040

- wireshark issues
- CVE-2009-3765: mutt not-affected, our mutt is linked against gnutls
- CVE-2009-3641: DoS while printing specially-crafted IPv6 packet using the -v option in snort
- CVE-2009-3616: Multiple use-after-free vulnerabilities in qemu and kvm
- CVE-2006-5031: fixed in cakephp 1.1.13.4450-1
- CVE-2006-4067: fixed in cakephp 1.1.13.4450-1

---

Revision 13040 - (view) (download) (annotate) - [select for diffs]
Modified Mon Oct 19 17:26:55 2009 UTC (3 years, 6 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4940 byte(s)
Diff to previous 13023

- xmp no-dsa
- new pidgin issue
- rejected cleaups

---

Revision 13023 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 15 21:47:53 2009 UTC (3 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4892 byte(s)
Diff to previous 13021

- oping CVEfied
- xscreensaver spu fix
- dhttpd no-dsa
- mono fixed
- new backintime issue

---

Revision 13021 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 15 13:23:11 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4947 byte(s)
Diff to previous 13013

- CVE-2009-3564 no-dsa
- CVE-2009-3589 fixed in incron 0.5.7-1
- CVE-2009-3575: Buffer overflow in  DHTRoutingTableDeserializer.cc in aria2
- openoffice.org issues
- NFUs

---

Revision 13013 - (view) (download) (annotate) - [select for diffs]
Modified Wed Oct 14 07:31:39 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4869 byte(s)
Diff to previous 13009

- NFUs
- spu notifications

---

Revision 13009 - (view) (download) (annotate) - [select for diffs]
Modified Wed Oct 14 02:06:22 2009 UTC (3 years, 7 months ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 4767 byte(s)
Diff to previous 12947

- dopewars non-issue
- tracking for dsa-1906

---

Revision 12947 - (view) (download) (annotate) - [select for diffs]
Modified Tue Oct 6 21:43:20 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4709 byte(s)
Diff to previous 12928

- htmldoc NMUed
- CVE-2009-3242,CVE-2009-3241 fixed in wireshark 1.2.2-1
- CVE-2009-3490 fixed in wget 1.12-1

---

Revision 12928 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 3 15:45:34 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4663 byte(s)
Diff to previous 12925

spu notifications

---

Revision 12925 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 3 10:21:56 2009 UTC (3 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4647 byte(s)
Diff to previous 12922

no-dsa: glib, overkill

---

Revision 12922 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 2 23:18:07 2009 UTC (3 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4532 byte(s)
Diff to previous 12892

- planet-venus scheduled for point update
- backuppc no-dsa
- new libfwbuilder issue
- new opensaml issue
- rewrite some not-affected entries

---

Revision 12892 - (view) (download) (annotate) - [select for diffs]
Modified Sun Sep 27 10:46:54 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4496 byte(s)
Diff to previous 12891

spu notification

---

Revision 12891 - (view) (download) (annotate) - [select for diffs]
Modified Sun Sep 27 10:36:17 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4450 byte(s)
Diff to previous 12873

- spu notifications
- neon26 fixed in unstable

---

Revision 12873 - (view) (download) (annotate) - [select for diffs]
Modified Wed Sep 23 07:06:01 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4341 byte(s)
Diff to previous 12869

- NFUs
- planet issue no-dsa
- chromium itp

---

Revision 12869 - (view) (download) (annotate) - [select for diffs]
Modified Tue Sep 22 18:31:46 2009 UTC (3 years, 7 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 4209 byte(s)
Diff to previous 12830

- spu notifications
- CVE-2009-3235 is a different vulnerability than CVE-2009-2632

---

Revision 12830 - (view) (download) (annotate) - [select for diffs]
Modified Wed Sep 16 20:51:08 2009 UTC (3 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4150 byte(s)
Diff to previous 12810

cleanups from issue review, new issues, no-dsas,
not-affected, etc. pp

---

Revision 12810 - (view) (download) (annotate) - [select for diffs]
Modified Mon Sep 14 16:54:43 2009 UTC (3 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3534 byte(s)
Diff to previous 12789

- rails fixed
- rhythmbox, libdkim unimportant
- wireshark, movable type no-dsa

---

Revision 12789 - (view) (download) (annotate) - [select for diffs]
Modified Fri Sep 11 16:52:11 2009 UTC (3 years, 8 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 3482 byte(s)
Diff to previous 12780

spu notifications

---

Revision 12780 - (view) (download) (annotate) - [select for diffs]
Modified Thu Sep 10 08:36:51 2009 UTC (3 years, 8 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 3422 byte(s)
Diff to previous 12757

- NFUs
- two minor no-dsa candidate mod_proxy_ftp issues
- CVE-2008-607{0,1,2) were fixed in graphicsmagick 1.2.3-1
- two new rails issues

---

Revision 12757 - (view) (download) (annotate) - [select for diffs]
Modified Mon Sep 7 17:39:41 2009 UTC (3 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3493 byte(s)
Diff to previous 12711

- gri, buildbot no-dsa
- xulrunner fixes for Lenny
- sdm, burn fixed
- remove silc temp entry
- gaim not affected in lenny, only a transitional package

---

Revision 12711 - (view) (download) (annotate) - [select for diffs]
Modified Sun Aug 30 21:03:42 2009 UTC (3 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3348 byte(s)
Diff to previous 12701

- ntop indeed no-dsa
- new ikiwiki issue
- new serveez issue (no-dsa candidate)

---

Revision 12701 - (view) (download) (annotate) - [select for diffs]
Modified Sat Aug 29 06:13:31 2009 UTC (3 years, 8 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 3314 byte(s)
Diff to previous 12655

- NFUs
- some issues fixed in spu
- chromium-browser itp

---

Revision 12655 - (view) (download) (annotate) - [select for diffs]
Modified Fri Aug 21 19:21:47 2009 UTC (3 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3372 byte(s)
Diff to previous 12653

checked some not-affected states

---

Revision 12653 - (view) (download) (annotate) - [select for diffs]
Modified Fri Aug 21 17:50:45 2009 UTC (3 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3339 byte(s)
Diff to previous 12630

new burn issue (no-dsa)

---

Revision 12630 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 18 13:54:05 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 3268 byte(s)
Diff to previous 12626

- spu notifications
- OCS Inventory NG Server Sql injection fixed in unstable

---

Revision 12626 - (view) (download) (annotate) - [select for diffs]
Modified Mon Aug 17 18:46:29 2009 UTC (3 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3232 byte(s)
Diff to previous 12571

- openvpn, xemacs, libpam-ssh no-dsa
- new gri issue

---

Revision 12571 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 11 20:45:32 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 3010 byte(s)
Diff to previous 12567

etch and lenny are not affected by wordpress password reset issue

---

Revision 12567 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 11 19:20:39 2009 UTC (3 years, 9 months ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 3057 byte(s)
Diff to previous 12542

wordpress issue is an spu/ospu candidate

---

Revision 12542 - (view) (download) (annotate) - [select for diffs]
Modified Sun Aug 9 20:10:45 2009 UTC (3 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3010 byte(s)
Diff to previous 12477

- tor issues scheduled for spu
- mark firebird as spu candidate

---

Revision 12477 - (view) (download) (annotate) - [select for diffs]
Modified Tue Aug 4 15:34:43 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2969 byte(s)
Diff to previous 12460

spu notifications

---

Revision 12460 - (view) (download) (annotate) - [select for diffs]
Modified Sun Aug 2 02:15:37 2009 UTC (3 years, 9 months ago) by white
Original Path: data/spu-candidates.txt
File length: 2923 byte(s)
Diff to previous 12445

evolution mailer issue no-dsa

---

Revision 12445 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jul 29 12:12:07 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2884 byte(s)
Diff to previous 12427

CVE-2009-0801 spu/ospu candidate
NFUs

---

Revision 12427 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jul 28 08:25:24 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2813 byte(s)
Diff to previous 12421

NFUs
spu notification

---

Revision 12421 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jul 26 17:47:49 2009 UTC (3 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2793 byte(s)
Diff to previous 12403

stardict no-dsa

---

Revision 12403 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jul 24 18:02:12 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2755 byte(s)
Diff to previous 12387

memcachedb doesn't exist in stable and oldstable

---

Revision 12387 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jul 21 17:41:40 2009 UTC (3 years, 9 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2819 byte(s)
Diff to previous 12352

spu and ospu notifications

---

Revision 12352 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jul 15 21:27:01 2009 UTC (3 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2736 byte(s)
Diff to previous 12302

mark wordpress info leaks as unimportant

---

Revision 12302 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jul 7 06:49:21 2009 UTC (3 years, 10 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2695 byte(s)
Diff to previous 12292

NFUs
CVE-2009-2175 fixed in spu
two new fckeditor issues

---

Revision 12292 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jul 6 13:36:58 2009 UTC (3 years, 10 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2815 byte(s)
Diff to previous 12260

spu and ospu notifications

---

Revision 12260 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jul 2 22:34:58 2009 UTC (3 years, 10 months ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 2554 byte(s)
Diff to previous 12258

etch also affected by udev issue and mainainer notified

---

Revision 12258 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jul 2 22:11:11 2009 UTC (3 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2534 byte(s)
Diff to previous 12244

udev no-dsa

---

Revision 12244 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jul 1 18:24:25 2009 UTC (3 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2514 byte(s)
Diff to previous 12200

- new phpmyadmin issue
- libpng and browser randomness issues no-dsa
- ocsinventory documented as not to be used
  with a public web server (TODO: document in
  debtag)
- moin non-issue
- samba fixed
- add epoch to compface entry
- new icedove issues

---

Revision 12200 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jun 25 18:50:15 2009 UTC (3 years, 10 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 2478 byte(s)
Diff to previous 12191

spu notifications

---

Revision 12191 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 24 18:47:22 2009 UTC (3 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2398 byte(s)
Diff to previous 12148

- xfs fixed
- convirt fixed
- jasper fixed
- some cleanups of CVE requests
- I've begun triaging the xine-lib issues for etch

---

Revision 12148 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 17 23:24:47 2009 UTC (3 years, 11 months ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 2366 byte(s)
Diff to previous 12147

typo

---

Revision 12147 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 17 23:23:53 2009 UTC (3 years, 11 months ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 2366 byte(s)
Diff to previous 12108

webkit issue is an spu-candidate

---

Revision 12108 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jun 11 21:59:06 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2313 byte(s)
Diff to previous 12057

- new issues: kfreebsd (2x), adtool, kernel, webkit (2x), tomcat
- bugnum
- cscope fixed
- fix webkit entries, all issues are tracked by source packages,
  not binary package names
- atmailopen was removed from the archive

---

Revision 12057 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jun 6 17:30:28 2009 UTC (3 years, 11 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 1775 byte(s)
Diff to previous 12047

ospu and spu notifications

---

Revision 12047 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jun 4 21:15:02 2009 UTC (3 years, 11 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 1754 byte(s)
Diff to previous 12038

ospu and spu notifications

---

Revision 12038 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 3 18:00:32 2009 UTC (3 years, 11 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 1692 byte(s)
Diff to previous 12034

ospu and spu notifications

---

Revision 12034 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 3 07:57:18 2009 UTC (3 years, 11 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 1632 byte(s)
Diff to previous 12029

coccinelle is only in unstable and testing

---

Revision 12029 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jun 2 21:22:36 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1718 byte(s)
Diff to previous 12024

slim no-dsa

---

Revision 12024 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jun 2 21:03:28 2009 UTC (3 years, 11 months ago) by derevko-guest
Original Path: data/spu-candidates.txt
File length: 1632 byte(s)
Diff to previous 12020

- compiz-fusion-plugins-main spu notification
- new gst-plugins-good0.10 Integer Overflow Vulnerability

---

Revision 12020 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jun 2 19:24:39 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1612 byte(s)
Diff to previous 11981

- gnutls no-dsa
- mozilla non-issue

---

Revision 11981 - (view) (download) (annotate) - [select for diffs]
Modified Wed May 27 20:12:05 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1574 byte(s)
Diff to previous 11963

minor lcms issue

---

Revision 11963 - (view) (download) (annotate) - [select for diffs]
Modified Sun May 24 08:04:56 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1502 byte(s)
Diff to previous 11956

- compiz-fusion-plugins-main no-dsa
- two new kernel issues
- requested removal for verlihub

---

Revision 11956 - (view) (download) (annotate) - [select for diffs]
Modified Fri May 22 19:54:08 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1338 byte(s)
Diff to previous 11944

one pidgin issue doesn't affect Etch
asterisk no-dsa

---

Revision 11944 - (view) (download) (annotate) - [select for diffs]
Modified Thu May 21 12:24:46 2009 UTC (3 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1315 byte(s)
Diff to previous 11911

- minor ntp issue has been fixed in DSA alongside with a more severe issue,
  remove from ospu/spu candidates list
- kernel fixed
- selinux issue was fixed for 2.6.29 through stable kernel update
- issue tracked as openjdk is actually a lcms issue
- CVE-2008-5519 is listed on the Tomcat web site, but it's actually within
  mod-jk only
- clone ffmpeg-debian issue for the ffmpeg version in etch
- clone gnutls issue for the gnutls version in etch
- remove duplicate etch entry for older apache issue

---

Revision 11911 - (view) (download) (annotate) - [select for diffs]
Modified Sat May 16 19:22:18 2009 UTC (4 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1348 byte(s)
Diff to previous 11853

cron no-dsa

---

Revision 11853 - (view) (download) (annotate) - [select for diffs]
Modified Sat May 9 17:35:01 2009 UTC (4 years ago) by nion
Original Path: data/spu-candidates.txt
File length: 1257 byte(s)
Diff to previous 11850

CVE-2009-0757 doesnt affect etch/lenny

---

Revision 11850 - (view) (download) (annotate) - [select for diffs]
Modified Sat May 9 13:06:05 2009 UTC (4 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1303 byte(s)
Diff to previous 11813

- CVE-2009-0164 won't be fixed in spu updates
- fix date in DSA list
- new minor hex-a-hop issue
- fix jetty issue, why was this marked unimportant?

---

Revision 11813 - (view) (download) (annotate) - [select for diffs]
Modified Wed May 6 13:07:25 2009 UTC (4 years ago) by white
Original Path: data/spu-candidates.txt
File length: 1349 byte(s)
Diff to previous 11775

Requested CVE id for coccinelle issue, no-dsa for oldstable/stable

---

Revision 11775 - (view) (download) (annotate) - [select for diffs]
Modified Mon May 4 19:44:38 2009 UTC (4 years ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 1263 byte(s)
Diff to previous 11773

CVE-2008-2009 vulnerability already fixed; additional hardening features to be considered as an spu/ospu candidate

---

Revision 11773 - (view) (download) (annotate) - [select for diffs]
Modified Mon May 4 14:25:56 2009 UTC (4 years ago) by nion
Original Path: data/spu-candidates.txt
File length: 1195 byte(s)
Diff to previous 11758

kfreebsd spu preparation

---

Revision 11758 - (view) (download) (annotate) - [select for diffs]
Modified Fri May 1 15:36:46 2009 UTC (4 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1247 byte(s)
Diff to previous 11732

- new kernel issue
- spu updates
- add samba issue (already fixed)
- bugnums

---

Revision 11732 - (view) (download) (annotate) - [select for diffs]
Modified Tue Apr 28 15:11:19 2009 UTC (4 years ago) by gilbert-guest
Original Path: data/spu-candidates.txt
File length: 1231 byte(s)
Diff to previous 11729

- pptp-linux issue fixed in unstable
- pam issue unimportant and candidate for spu/ospu

---

Revision 11729 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 27 17:53:16 2009 UTC (4 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1173 byte(s)
Diff to previous 11718

- various no-dsa issues triaged

---

Revision 11718 - (view) (download) (annotate) - [select for diffs]
Modified Sun Apr 26 13:46:04 2009 UTC (4 years ago) by nion
Original Path: data/spu-candidates.txt
File length: 1135 byte(s)
Diff to previous 11712

some spu notices

---

Revision 11712 - (view) (download) (annotate) - [select for diffs]
Modified Fri Apr 24 17:35:12 2009 UTC (4 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 995 byte(s)
Diff to previous 11707

- mark slurm as fixed for lenny
- remove wireshark duplicates
- one kernel issue has been renamed
- pptp-linux no-dsa

---

Revision 11707 - (view) (download) (annotate) - [select for diffs]
Modified Fri Apr 24 03:44:50 2009 UTC (4 years ago) by white
Original Path: data/spu-candidates.txt
File length: 937 byte(s)
Diff to previous 11705

Filled bug for ntp, severity low, no-dsa

---

Revision 11705 - (view) (download) (annotate) - [select for diffs]
Modified Fri Apr 24 02:57:18 2009 UTC (4 years ago) by white
Original Path: data/spu-candidates.txt
File length: 904 byte(s)
Diff to previous 11704

cups no-dsa issues

---

Revision 11704 - (view) (download) (annotate) - [select for diffs]
Modified Thu Apr 23 22:25:03 2009 UTC (4 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 878 byte(s)
Diff to previous 11559

lots of no-dsas

---

Revision 11559 - (view) (download) (annotate) - [select for diffs]
Modified Fri Apr 3 22:00:29 2009 UTC (4 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 724 byte(s)
Diff to previous 11553

marked as no-dsa, added to xspu candidates. Please remember
 to do so if you mark an issue as no-dsa and if it makes
 sense 

---

Revision 11553 - (view) (download) (annotate) - [select for diffs]
Modified Fri Apr 3 20:13:06 2009 UTC (4 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 689 byte(s)
Diff to previous 11507

xfig no-dsa

---

Revision 11507 - (view) (download) (annotate) - [select for diffs]
Modified Tue Mar 31 21:40:19 2009 UTC (4 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 647 byte(s)
Diff to previous 11490

- bugzilla no-dsa
- xulrunner fixed

---

Revision 11490 - (view) (download) (annotate) - [select for diffs]
Modified Mon Mar 30 17:06:47 2009 UTC (4 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 600 byte(s)
Diff to previous 11479

- multiple java6 issues fixed
- new xfig issue
- systemtap fixed
- avahi fixed
- opensc fixed
- openldap no-dsa

---

Revision 11479 - (view) (download) (annotate) - [select for diffs]
Modified Thu Mar 26 17:36:15 2009 UTC (4 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 578 byte(s)
Diff to previous 11405

- new kfreebsd issue
- remove etch-specific unfixed entry, unneeded and might cause problems
- clone mikmod no-dsas for lenny
- unimportant bash issue fixed

---

Revision 11405 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 15 13:36:34 2009 UTC (4 years, 2 months ago) by white
Original Path: data/spu-candidates.txt
File length: 546 byte(s)
Diff to previous 11404

lenny is already fixed

---

Revision 11404 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 15 13:34:15 2009 UTC (4 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 572 byte(s)
Diff to previous 11386

kaya no-dsa

---

Revision 11386 - (view) (download) (annotate) - [select for diffs]
Modified Fri Mar 13 20:48:54 2009 UTC (4 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 546 byte(s)
Diff to previous 11373

split and update spu candidates

---

Revision 11373 - (view) (download) (annotate) - [select for diffs]
Modified Tue Mar 10 20:52:51 2009 UTC (4 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7427 byte(s)
Diff to previous 11367

- asterisk no-dsa for Lenny as well
- mysql 5.1 available in experimental

---

Revision 11367 - (view) (download) (annotate) - [select for diffs]
Modified Tue Mar 10 13:58:03 2009 UTC (4 years, 2 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 7389 byte(s)
Diff to previous 11362

- spu notifications
- CVE-2009-0819 does not affect mysql in Debian
- CVE-2009-0737 fixed in mediawiki 1:1.14.0-1
- CVE-2008-5076 fixed in htop 0.8.1-2
- CVE-2008-4968 fixed in lmbench 3.0-a9-1

---

Revision 11362 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 8 19:37:18 2009 UTC (4 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7309 byte(s)
Diff to previous 11347

this should be fixed

---

Revision 11347 - (view) (download) (annotate) - [select for diffs]
Modified Fri Mar 6 23:52:05 2009 UTC (4 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7342 byte(s)
Diff to previous 11343

new mpfr issue already fixed in sid, no-dsa for released
  suites

---

Revision 11343 - (view) (download) (annotate) - [select for diffs]
Modified Fri Mar 6 14:06:50 2009 UTC (4 years, 2 months ago) by white
Original Path: data/spu-candidates.txt
File length: 7316 byte(s)
Diff to previous 11319

no-dsa for psi

---

Revision 11319 - (view) (download) (annotate) - [select for diffs]
Modified Tue Mar 3 20:53:20 2009 UTC (4 years, 2 months ago) by thijs
Original Path: data/spu-candidates.txt
File length: 7283 byte(s)
Diff to previous 11213

net-snmp no-dsa as per RT #1152

---

Revision 11213 - (view) (download) (annotate) - [select for diffs]
Modified Fri Feb 13 22:10:07 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 7233 byte(s)
Diff to previous 11210

- add libarchive-tar-perl to spu candidates
- libsamplerate, python/imageop no-dsa
- add one missing CVE ID to python-dns DSA
- two mediawiki issues don't affect etch
- tar module not yet present in Etch's perl

---

Revision 11210 - (view) (download) (annotate) - [select for diffs]
Modified Fri Feb 13 21:30:33 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6992 byte(s)
Diff to previous 11202

- no-dsa: mailscanner, tsqllib, mikmod, sdlmixer
- remove CVEfied trac temp entry
- one tomcat issue is actually a JVM issue
- libnet-dns-perl isn't fixed DNS randomisation-wise

---

Revision 11202 - (view) (download) (annotate) - [select for diffs]
Modified Thu Feb 12 22:13:52 2009 UTC (4 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6893 byte(s)
Diff to previous 11195

spu notifications

---

Revision 11195 - (view) (download) (annotate) - [select for diffs]
Modified Wed Feb 11 21:56:37 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6793 byte(s)
Diff to previous 11184

- no-dsa: acidbase, bluez, motion, nfs-utils, systemimager, kdelibs
- three new wireshark issues already resolved for
  etch and lenny
- arb fixed

---

Revision 11184 - (view) (download) (annotate) - [select for diffs]
Modified Tue Feb 10 23:02:08 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6594 byte(s)
Diff to previous 11178

tau no-dsa
new tor issues

---

Revision 11178 - (view) (download) (annotate) - [select for diffs]
Modified Tue Feb 10 15:56:03 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6561 byte(s)
Diff to previous 11123

add latest point update

---

Revision 11123 - (view) (download) (annotate) - [select for diffs]
Modified Sun Feb 1 12:42:13 2009 UTC (4 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6719 byte(s)
Diff to previous 11115

sput notification

---

Revision 11115 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 30 16:35:55 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6679 byte(s)
Diff to previous 11112

new kernel issues
NFUs
gnumeric fixed
evolution no-dsa
ktorrent CVEfied

---

Revision 11112 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 22:39:41 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6597 byte(s)
Diff to previous 11111

gnumeric stable update proposed

---

Revision 11111 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 22:17:45 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6655 byte(s)
Diff to previous 11106

* no-dsa for some python2.5 issues which have been fixed for
  2.4 (even through they've been borderline cases already)
* tcl no-dsa
* cleanup older php issue

---

Revision 11106 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 20:23:49 2009 UTC (4 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6624 byte(s)
Diff to previous 11105

spu notification

---

Revision 11105 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 20:14:13 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6504 byte(s)
Diff to previous 11101

auctex, cyrus-sasl no-dsa

---

Revision 11101 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 19:29:20 2009 UTC (4 years, 3 months ago) by white
Original Path: data/spu-candidates.txt
File length: 6441 byte(s)
Diff to previous 11100

gnumeric untrusted search path issue can be fixed via s-p-u

---

Revision 11100 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 19:21:34 2009 UTC (4 years, 3 months ago) by white
Original Path: data/spu-candidates.txt
File length: 6403 byte(s)
Diff to previous 11097

New trickle issue, CVE id requested

---

Revision 11097 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 18:46:54 2009 UTC (4 years, 3 months ago) by white
Original Path: data/spu-candidates.txt
File length: 6382 byte(s)
Diff to previous 11096

New gedit python path issue

---

Revision 11096 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 29 18:25:12 2009 UTC (4 years, 3 months ago) by white
Original Path: data/spu-candidates.txt
File length: 6347 byte(s)
Diff to previous 11075

New xchat python path issue

---

Revision 11075 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 28 17:17:36 2009 UTC (4 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6312 byte(s)
Diff to previous 11072

spu notification

---

Revision 11072 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 28 16:56:28 2009 UTC (4 years, 3 months ago) by white
Original Path: data/spu-candidates.txt
File length: 6292 byte(s)
Diff to previous 11041

Mark unp issue as no-dsa, it is not really used as archiver by any package in stable

---

Revision 11041 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 25 16:20:16 2009 UTC (4 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6259 byte(s)
Diff to previous 11038

spu notification

---

Revision 11038 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 25 10:05:26 2009 UTC (4 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6239 byte(s)
Diff to previous 10961

- xrdp fixed
- tcl no-dsa
- fix gstreamer srcpkg name

---

Revision 10961 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 15 09:40:17 2009 UTC (4 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6204 byte(s)
Diff to previous 10954

spu notification

---

Revision 10954 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 14 20:19:40 2009 UTC (4 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6184 byte(s)
Diff to previous 10951

mark as spu candidate

---

Revision 10951 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 13 23:50:02 2009 UTC (4 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6149 byte(s)
Diff to previous 10950

fill in xrdp bug, NFU, spu notification

---

Revision 10950 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 13 23:02:56 2009 UTC (4 years, 4 months ago) by white
Original Path: data/spu-candidates.txt
File length: 6129 byte(s)
Diff to previous 10910

multi-gnome-terminal issue is low, can be fixed via s-p-u

---

Revision 10910 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 9 15:06:04 2009 UTC (4 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6087 byte(s)
Diff to previous 10904

spu notice

---

Revision 10904 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 8 21:59:27 2009 UTC (4 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 6067 byte(s)
Diff to previous 10898

spu notice

---

Revision 10898 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 8 20:41:23 2009 UTC (4 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6047 byte(s)
Diff to previous 10894

devscripts no-dsa

---

Revision 10894 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 8 20:18:37 2009 UTC (4 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 6023 byte(s)
Diff to previous 10820

p3nfs no-dsa

---

Revision 10820 - (view) (download) (annotate) - [select for diffs]
Modified Mon Dec 29 02:16:51 2008 UTC (4 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5984 byte(s)
Diff to previous 10805

minor/unimportant issues

---

Revision 10805 - (view) (download) (annotate) - [select for diffs]
Modified Thu Dec 25 23:27:37 2008 UTC (4 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5920 byte(s)
Diff to previous 10804

spu notification

---

Revision 10804 - (view) (download) (annotate) - [select for diffs]
Modified Thu Dec 25 22:54:31 2008 UTC (4 years, 4 months ago) by white
Original Path: data/spu-candidates.txt
File length: 5900 byte(s)
Diff to previous 10801

muttprint fixed in sid, s-p-u candidate

---

Revision 10801 - (view) (download) (annotate) - [select for diffs]
Modified Thu Dec 25 21:48:34 2008 UTC (4 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5861 byte(s)
Diff to previous 10670

CVE-2008-4247 fixed via spu

---

Revision 10670 - (view) (download) (annotate) - [select for diffs]
Modified Wed Dec 10 16:23:31 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5911 byte(s)
Diff to previous 10662

graphviz in s-p-u accepted

---

Revision 10662 - (view) (download) (annotate) - [select for diffs]
Modified Mon Dec 8 23:18:45 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5968 byte(s)
Diff to previous 10588

stable point release candidates in preparation

---

Revision 10588 - (view) (download) (annotate) - [select for diffs]
Modified Tue Dec 2 23:28:39 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5954 byte(s)
Diff to previous 10586

spu notifications

---

Revision 10586 - (view) (download) (annotate) - [select for diffs]
Modified Tue Dec 2 22:49:00 2008 UTC (4 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5934 byte(s)
Diff to previous 10556

dnspython no-dsa
one kernel issue fixed

---

Revision 10556 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 09:47:38 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5895 byte(s)
Diff to previous 10555

spu notifications

---

Revision 10555 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 09:46:11 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5875 byte(s)
Diff to previous 10554

spu notifications

---

Revision 10554 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 09:43:47 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5837 byte(s)
Diff to previous 10552

CVE-2008-4863 fixed for stable

---

Revision 10552 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 08:52:48 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5894 byte(s)
Diff to previous 10551

spu notification

---

Revision 10551 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 08:47:08 2008 UTC (4 years, 5 months ago) by white
Original Path: data/spu-candidates.txt
File length: 5874 byte(s)
Diff to previous 10547

Mark horde3 XSS with no-dsa; use no-das as well and document dup

---

Revision 10547 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 01:13:50 2008 UTC (4 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5838 byte(s)
Diff to previous 10546

* add one CVD ID to horde3 DSA
* bugzilla <no-dsa>
* add a TODO a <confirmed> tag
* document glibc stub resolver situation

---

Revision 10546 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 30 00:21:54 2008 UTC (4 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5815 byte(s)
Diff to previous 10479

some no-dsas
two typo3 issues don't affect etch

---

Revision 10479 - (view) (download) (annotate) - [select for diffs]
Modified Mon Nov 24 21:22:05 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5717 byte(s)
Diff to previous 10474

spu notification

---

Revision 10474 - (view) (download) (annotate) - [select for diffs]
Modified Mon Nov 24 14:05:52 2008 UTC (4 years, 5 months ago) by white
Original Path: data/spu-candidates.txt
File length: 5697 byte(s)
Diff to previous 10470

Add urgency to blender issue

---

Revision 10470 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 23 23:33:28 2008 UTC (4 years, 5 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5660 byte(s)
Diff to previous 10466

spu notification

---

Revision 10466 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 23 20:17:23 2008 UTC (4 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5640 byte(s)
Diff to previous 10259

hplip no-dsa

---

Revision 10259 - (view) (download) (annotate) - [select for diffs]
Modified Mon Nov 3 13:58:38 2008 UTC (4 years, 6 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5591 byte(s)
Diff to previous 10254

spu notification

---

Revision 10254 - (view) (download) (annotate) - [select for diffs]
Modified Mon Nov 3 10:40:55 2008 UTC (4 years, 6 months ago) by white
Original Path: data/spu-candidates.txt
File length: 5571 byte(s)
Diff to previous 10242

python issues are low priority; two don't affect etch, one no-dsa

---

Revision 10242 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 2 12:09:57 2008 UTC (4 years, 6 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5541 byte(s)
Diff to previous 10240

dia maintainer notified

---

Revision 10240 - (view) (download) (annotate) - [select for diffs]
Modified Sun Nov 2 11:43:47 2008 UTC (4 years, 6 months ago) by white
Original Path: data/spu-candidates.txt
File length: 5521 byte(s)
Diff to previous 10215

Add new dia issue; only vulnerable when called from certain dir, so no-dsa

---

Revision 10215 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 31 14:19:39 2008 UTC (4 years, 6 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5504 byte(s)
Diff to previous 10209

spu notification

---

Revision 10209 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 30 16:53:07 2008 UTC (4 years, 6 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5464 byte(s)
Diff to previous 10134

- record latest stable update
- two no-dsa for minor ftpd issues

---

Revision 10134 - (view) (download) (annotate) - [select for diffs]
Modified Mon Oct 20 20:09:48 2008 UTC (4 years, 6 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5627 byte(s)
Diff to previous 10131

spu notification

---

Revision 10131 - (view) (download) (annotate) - [select for diffs]
Modified Mon Oct 20 17:23:13 2008 UTC (4 years, 6 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5607 byte(s)
Diff to previous 10116

ipsec-tools no-dsa
some kernel issues fixed
mantis updated fix
one network issue affects freeBSD

---

Revision 10116 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 18 13:07:11 2008 UTC (4 years, 6 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5519 byte(s)
Diff to previous 10111

spu notification

---

Revision 10111 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 17 17:51:10 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5499 byte(s)
Diff to previous 10110

gmanedit no-dsa
various minor updates

---

Revision 10110 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 17 13:23:48 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5477 byte(s)
Diff to previous 10038

two new kernel issues
new minor graphiv issue

---

Revision 10038 - (view) (download) (annotate) - [select for diffs]
Modified Tue Oct 7 22:13:23 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5427 byte(s)
Diff to previous 10034

spu notification

---

Revision 10034 - (view) (download) (annotate) - [select for diffs]
Modified Tue Oct 7 21:19:21 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5407 byte(s)
Diff to previous 10031

CVE allocations and temp updates

---

Revision 10031 - (view) (download) (annotate) - [select for diffs]
Modified Tue Oct 7 12:31:57 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5367 byte(s)
Diff to previous 10007

dist package uploaded

---

Revision 10007 - (view) (download) (annotate) - [select for diffs]
Modified Mon Oct 6 11:45:37 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5361 byte(s)
Diff to previous 10006

no spu for crossfire-maps

---

Revision 10006 - (view) (download) (annotate) - [select for diffs]
Modified Mon Oct 6 11:38:55 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5283 byte(s)
Diff to previous 10002

spu notifications

---

Revision 10002 - (view) (download) (annotate) - [select for diffs]
Modified Sun Oct 5 16:52:48 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5243 byte(s)
Diff to previous 9997

ssmtp no-dsa

---

Revision 9997 - (view) (download) (annotate) - [select for diffs]
Modified Sun Oct 5 09:29:44 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5224 byte(s)
Diff to previous 9995

nvi spu notification

---

Revision 9995 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 4 21:03:59 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5204 byte(s)
Diff to previous 9994

more no-dsa
sql-ledger not fully supported in Etch/Lenny

---

Revision 9994 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 4 20:51:05 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 5148 byte(s)
Diff to previous 9991

Etch triage:
- Three recent kernel issues don't affect 2.6.18 from Etch
- twiki issue has been rejected
- ed issue no-dsa, was also duplicated
- links2 minor information leak no-dsa

---

Revision 9991 - (view) (download) (annotate) - [select for diffs]
Modified Sat Oct 4 10:37:54 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 5149 byte(s)
Diff to previous 9980

spu notifications

---

Revision 9980 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 22:30:16 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4731 byte(s)
Diff to previous 9978

temp triage finished
feta CVEfied

---

Revision 9978 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 20:44:02 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4637 byte(s)
Diff to previous 9976

more SPUs
openswan should be fixed
not much point in fixing LTP in Etch, in Lenny it has been documented to only
   work for isolated environments

---

Revision 9976 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 19:57:41 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4577 byte(s)
Diff to previous 9975

more SPUs
bulmages not in etch
some bugs were already archived, which initially confused me

---

Revision 9975 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 19:28:48 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4517 byte(s)
Diff to previous 9973

more temp triage

---

Revision 9973 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 19:13:41 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4407 byte(s)
Diff to previous 9971

more SPUs
r-base-core-ra and dtc tracked, but not in Etch

---

Revision 9971 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 18:11:57 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4340 byte(s)
Diff to previous 9966

more temp triage

---

Revision 9966 - (view) (download) (annotate) - [select for diffs]
Modified Fri Oct 3 14:58:48 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 4251 byte(s)
Diff to previous 9959

spu notifications

---

Revision 9959 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 16:08:52 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 4213 byte(s)
Diff to previous 9953

remove plait and lazarus from spu-candidates, they're not present in Etch
more temp triage
new kernel issue

---

Revision 9953 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 13:46:23 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 4273 byte(s)
Diff to previous 9950

spu notification

---

Revision 9950 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 13:16:50 2008 UTC (4 years, 7 months ago) by white
Original Path: data/spu-candidates.txt
File length: 4253 byte(s)
Diff to previous 9945

realtimebattle issue already in tracker; not run as root and minor issue, no-dsa

---

Revision 9945 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 12:55:23 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 4225 byte(s)
Diff to previous 9941

chillispot tmp race is low, no-dsa, maintainer notified

---

Revision 9941 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 12:03:07 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 4218 byte(s)
Diff to previous 9939

sabre maintainer notified for spu

---

Revision 9939 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 12:00:32 2008 UTC (4 years, 7 months ago) by white
Original Path: data/spu-candidates.txt
File length: 4199 byte(s)
Diff to previous 9937

temp file issue in game sabre is minor

---

Revision 9937 - (view) (download) (annotate) - [select for diffs]
Modified Thu Oct 2 11:46:24 2008 UTC (4 years, 7 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 4178 byte(s)
Diff to previous 9930

notifications for spu candidates

---

Revision 9930 - (view) (download) (annotate) - [select for diffs]
Modified Wed Oct 1 21:35:38 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3921 byte(s)
Diff to previous 9929

more tmp triage
it seems as if Dmitry didn't file bugs for all issues in his
  MBF, the remaining ones need to be evaluated and filed

---

Revision 9929 - (view) (download) (annotate) - [select for diffs]
Modified Wed Oct 1 21:25:38 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3899 byte(s)
Diff to previous 9927

more temp triage

---

Revision 9927 - (view) (download) (annotate) - [select for diffs]
Modified Wed Oct 1 20:56:25 2008 UTC (4 years, 7 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3767 byte(s)
Diff to previous 9920

start triaging temp file issue mass bug filing

---

Revision 9920 - (view) (download) (annotate) - [select for diffs]
Modified Wed Oct 1 14:31:22 2008 UTC (4 years, 7 months ago) by white
Original Path: data/spu-candidates.txt
File length: 3642 byte(s)
Diff to previous 9641

Add information about jumpnbump issue to tracker

---

Revision 9641 - (view) (download) (annotate) - [select for diffs]
Modified Sun Aug 24 23:10:38 2008 UTC (4 years, 8 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3586 byte(s)
Diff to previous 9638

CVE-2008-3688 fixed in havp 20070509-1.1
notified ipsec-tools maintainer for spu, fixed upstream link

---

Revision 9638 - (view) (download) (annotate) - [select for diffs]
Modified Sun Aug 24 21:10:13 2008 UTC (4 years, 8 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3568 byte(s)
Diff to previous 9534

new kernel issue
add entries for 2.6.24
no-dsas

---

Revision 9534 - (view) (download) (annotate) - [select for diffs]
Modified Thu Aug 7 23:15:29 2008 UTC (4 years, 9 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3403 byte(s)
Diff to previous 9522

notified exiv2,links2 and wdiff maintainers for spu

---

Revision 9522 - (view) (download) (annotate) - [select for diffs]
Modified Wed Aug 6 19:37:44 2008 UTC (4 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3343 byte(s)
Diff to previous 9425

links2, exiv2 no-dsa
add php to packages with special security support
add one missing mozilla CVE ID, which was split off
one moin issue doesn't affect etch
two dnsmasq issues don't affect etch, dnsmasq CVEfied
one iceweasel issue Mac specific
add note on firebird in etch
one issues marked as php is only relevant to libgd

---

Revision 9425 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jul 26 19:44:45 2008 UTC (4 years, 9 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3172 byte(s)
Diff to previous 9424

rather removed fixed spu candidates instead of marking them fixed

---

Revision 9424 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jul 26 19:42:55 2008 UTC (4 years, 9 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3440 byte(s)
Diff to previous 9387

mark balsa, cbrpager, proftpd-dfsg fixed via spu

---

Revision 9387 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jul 21 17:57:46 2008 UTC (4 years, 9 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3446 byte(s)
Diff to previous 9386

notified baycc maintainer for spu

---

Revision 9386 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jul 21 17:36:17 2008 UTC (4 years, 9 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3426 byte(s)
Diff to previous 9331

new issue
no-dsas

---

Revision 9331 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jul 15 09:54:17 2008 UTC (4 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3391 byte(s)
Diff to previous 9137

record several upstream fixes for the upcoming 2.6.26 upload
remove <unfixed> entries for [etch], since they're always implicitly unfixed
   if the version number is lower than the entry for unstable
do not record 2.6.24 entries if the fixed version in unstable is lower than
   2.6.24

---

Revision 9137 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jun 24 21:29:44 2008 UTC (4 years, 10 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3339 byte(s)
Diff to previous 9135

notified bugzilla maintainer for spu

---

Revision 9135 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jun 24 20:54:08 2008 UTC (4 years, 10 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3319 byte(s)
Diff to previous 9067

updates on embedded code copies
bugzilla no-dsa
add missing CVE ID to libimager-perl DSA
fix two incorrect ruby entries
remove some NOTEs present in the respective CVE entries
new kernel issue, mark unfixed for now until it's been figured
  out when this was fixed upstream
resolve old gpg TODO
NFUs

---

Revision 9067 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jun 14 11:59:15 2008 UTC (4 years, 11 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3280 byte(s)
Diff to previous 9043

cbrpager is being worked on

---

Revision 9043 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 11 21:55:51 2008 UTC (4 years, 11 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3283 byte(s)
Diff to previous 9041

notified maintainers for spu

---

Revision 9041 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 11 21:03:21 2008 UTC (4 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3243 byte(s)
Diff to previous 9040

more no-dsa

---

Revision 9040 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jun 11 21:02:21 2008 UTC (4 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3104 byte(s)
Diff to previous 8916

mksh no-dsa
two DSAs
imlib1 not affected by recent issues

---

Revision 8916 - (view) (download) (annotate) - [select for diffs]
Modified Tue May 27 20:36:54 2008 UTC (4 years, 11 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 3058 byte(s)
Diff to previous 8912

notified x/emacs21 maintainer for spu

---

Revision 8912 - (view) (download) (annotate) - [select for diffs]
Modified Tue May 27 15:52:31 2008 UTC (4 years, 11 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 3018 byte(s)
Diff to previous 8647

emacs no-dsa
one missing ID for openssh
snort issue doesn't affect etch
sql-ledger issues fixed

---

Revision 8647 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 28 22:34:21 2008 UTC (5 years ago) by nion
Original Path: data/spu-candidates.txt
File length: 2943 byte(s)
Diff to previous 8643

notified maintainers for spu

---

Revision 8643 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 28 19:51:19 2008 UTC (5 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2903 byte(s)
Diff to previous 8591

two no-dsa
one openssh issue doesn't affect etch
mondo CVEfied

---

Revision 8591 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 21 19:46:14 2008 UTC (5 years ago) by nion
Original Path: data/spu-candidates.txt
File length: 2795 byte(s)
Diff to previous 8590

notified libpng maintainer for spu

---

Revision 8590 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 21 19:20:35 2008 UTC (5 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2775 byte(s)
Diff to previous 8580

libpng no-dsa
add one CVE id for clamav
adjust eterm severity to rvxt entry

---

Revision 8580 - (view) (download) (annotate) - [select for diffs]
Modified Sat Apr 19 16:39:06 2008 UTC (5 years ago) by nion
Original Path: data/spu-candidates.txt
File length: 2740 byte(s)
Diff to previous 8578

spu notifications

---

Revision 8578 - (view) (download) (annotate) - [select for diffs]
Modified Sat Apr 19 16:29:56 2008 UTC (5 years ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2700 byte(s)
Diff to previous 8542

emacsen no-dsa
fix typos (had been too late)

---

Revision 8542 - (view) (download) (annotate) - [select for diffs]
Modified Wed Apr 16 20:23:08 2008 UTC (5 years, 1 month ago) by nion
Original Path: data/spu-candidates.txt
File length: 2563 byte(s)
Diff to previous 8541

notified cecilia maintainer

---

Revision 8541 - (view) (download) (annotate) - [select for diffs]
Modified Wed Apr 16 19:19:53 2008 UTC (5 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2543 byte(s)
Diff to previous 8528

cecilia no-dsa
python issue will be fixed in DSA along with other issues

---

Revision 8528 - (view) (download) (annotate) - [select for diffs]
Modified Tue Apr 15 10:25:17 2008 UTC (5 years, 1 month ago) by nion
Original Path: data/spu-candidates.txt
File length: 2601 byte(s)
Diff to previous 8526

notified paramiko maintainer for spu

---

Revision 8526 - (view) (download) (annotate) - [select for diffs]
Modified Mon Apr 14 17:01:00 2008 UTC (5 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2581 byte(s)
Diff to previous 8492

- bzip2 and paramiko no-dsa
- two new python issues
- mediawiki/etch not affected twice

---

Revision 8492 - (view) (download) (annotate) - [select for diffs]
Modified Wed Apr 9 12:05:59 2008 UTC (5 years, 1 month ago) by nion
Original Path: data/spu-candidates.txt
File length: 2479 byte(s)
Diff to previous 8490

notified comix maintainer for spu update

---

Revision 8490 - (view) (download) (annotate) - [select for diffs]
Modified Tue Apr 8 22:38:50 2008 UTC (5 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2459 byte(s)
Diff to previous 8477

comix no-dsa

---

Revision 8477 - (view) (download) (annotate) - [select for diffs]
Modified Thu Apr 3 22:39:27 2008 UTC (5 years, 1 month ago) by nion
Original Path: data/spu-candidates.txt
File length: 2424 byte(s)
Diff to previous 8476

notified boost maintainers for spu update

---

Revision 8476 - (view) (download) (annotate) - [select for diffs]
Modified Thu Apr 3 21:59:30 2008 UTC (5 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2404 byte(s)
Diff to previous 8448

boost spu no-dsa
cld issue/glibc not needed for etch
eterm rather harmless, more of a design bug than a vulnerability

---

Revision 8448 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 30 16:40:34 2008 UTC (5 years, 1 month ago) by nion
Original Path: data/spu-candidates.txt
File length: 2355 byte(s)
Diff to previous 8446

zabbix maintainer notified for spu

---

Revision 8446 - (view) (download) (annotate) - [select for diffs]
Modified Sun Mar 30 12:24:40 2008 UTC (5 years, 1 month ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2335 byte(s)
Diff to previous 8318

two more DSAs
one no-dsa

---

Revision 8318 - (view) (download) (annotate) - [select for diffs]
Modified Tue Mar 11 23:23:45 2008 UTC (5 years, 2 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 2295 byte(s)
Diff to previous 8317

notified wyrd maintainer for stable update

---

Revision 8317 - (view) (download) (annotate) - [select for diffs]
Modified Tue Mar 11 23:03:54 2008 UTC (5 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2276 byte(s)
Diff to previous 8204

more no-dsa

---

Revision 8204 - (view) (download) (annotate) - [select for diffs]
Modified Sat Feb 23 13:03:37 2008 UTC (5 years, 2 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 2238 byte(s)
Diff to previous 8203

maintainer notifications

---

Revision 8203 - (view) (download) (annotate) - [select for diffs]
Modified Sat Feb 23 12:39:56 2008 UTC (5 years, 2 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2198 byte(s)
Diff to previous 8088

two more no-dsa

---

Revision 8088 - (view) (download) (annotate) - [select for diffs]
Modified Tue Feb 5 23:07:05 2008 UTC (5 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 2103 byte(s)
Diff to previous 8086

notified python-django maintainer for stable update

---

Revision 8086 - (view) (download) (annotate) - [select for diffs]
Modified Tue Feb 5 22:30:41 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2083 byte(s)
Diff to previous 8061

django no-dsa

---

Revision 8061 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 29 23:58:02 2008 UTC (5 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1976 byte(s)
Diff to previous 8056

spu maintainer notifications

---

Revision 8056 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 29 21:00:58 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1936 byte(s)
Diff to previous 8055

xfce no-dsa

---

Revision 8055 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 29 20:57:31 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1895 byte(s)
Diff to previous 8024

one kernel issue doesn't affect etch
denyhosts fixed in stable update
php5 ini issue no-dsa due to regressions
one php issue unimportant
ruby1.9 no-dsa
streamripper no-dsa

---

Revision 8024 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 23 17:50:41 2008 UTC (5 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1861 byte(s)
Diff to previous 8023

notified mnogosearch maintainer for stable update

---

Revision 8023 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 23 17:11:57 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1841 byte(s)
Diff to previous 8009

one kernel issue not affecting etch
safe mode bypass unimportant (report has been posted to full disclosure)
mnogosearch minor issue

---

Revision 8009 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 22 00:13:33 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1799 byte(s)
Diff to previous 7988

turned out that etch and sarge don't ship the affected tool
   in the libcdio binary packages

---

Revision 7988 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 20 13:31:54 2008 UTC (5 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 2351 byte(s)
Diff to previous 7986

notified libcdio maintainer

---

Revision 7986 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 20 12:11:17 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 2331 byte(s)
Diff to previous 7976

libcdio no-dsa
older tomcat issue only affecting examples, rewriting

---

Revision 7976 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 19 13:55:12 2008 UTC (5 years, 3 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1799 byte(s)
Diff to previous 7974

notified balsa maintainer

---

Revision 7974 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 19 13:15:17 2008 UTC (5 years, 3 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1779 byte(s)
Diff to previous 7966

remove xine dupe
balsa no-dsa
qt ssl cert issue doesn't affect sarge or etch

---

Revision 7966 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 19 10:51:13 2008 UTC (5 years, 3 months ago) by thijs
Original Path: data/spu-candidates.txt
File length: 1690 byte(s)
Diff to previous 7933

duplicity sarge/etch not affected

---

Revision 7933 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 15 23:15:31 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1749 byte(s)
Diff to previous 7932

notified lighttpd maintainer

---

Revision 7932 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 15 22:58:39 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1729 byte(s)
Diff to previous 7904

minor lighttpd issue to spu candidates
gforge will be fixed in a DSA
one nagios-plugins issue doesn't affect Etch

---

Revision 7904 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 13 18:03:23 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1501 byte(s)
Diff to previous 7902

notified duplicity maintainer

---

Revision 7902 - (view) (download) (annotate) - [select for diffs]
Modified Sun Jan 13 17:47:39 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1481 byte(s)
Diff to previous 7884

duplicity no-dsa

---

Revision 7884 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 12 03:27:28 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1442 byte(s)
Diff to previous 7883

maintainer notifications for flac and libpam-ssh

---

Revision 7883 - (view) (download) (annotate) - [select for diffs]
Modified Sat Jan 12 01:07:37 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1402 byte(s)
Diff to previous 7876

two new no-dsa issues
xscreensaver issue doesn't affect etch
rss-glx was only a workaround, the real fix was xscreensaver
two moin issues were mixed around

---

Revision 7876 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 11 01:23:00 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1333 byte(s)
Diff to previous 7873

maintainers notified for new spu candidates

---

Revision 7873 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 10 22:58:19 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1253 byte(s)
Diff to previous 7871

more no-dsa on search path issues

---

Revision 7871 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 10 22:49:21 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1196 byte(s)
Diff to previous 7870

- When I tried to assist the maintainer to extract a patch to backport
  I noticed the code isn't present in Etch at all, noting accordingly
- Sylpheed issue not worth a DSA

---

Revision 7870 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 10 21:16:07 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 1123 byte(s)
Diff to previous 7860

three new DSAs
one issue no-dsa

---

Revision 7860 - (view) (download) (annotate) - [select for diffs]
Modified Wed Jan 9 11:46:37 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 1019 byte(s)
Diff to previous 7856

notified mldonkey and nufw maintainers

---

Revision 7856 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 8 18:41:19 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 979 byte(s)
Diff to previous 7848

- Firefly Media Server is in the archive, but under a different name (marked
     unfixed w/o further checks for now as a temporary measure)
- one rails issue doesn't affect Etch
- nufw, mldonkey no-dsa
- rewrite phpsysinfo as unimportant, rather than no-dsa

---

Revision 7848 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jan 7 17:50:09 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 915 byte(s)
Diff to previous 7847

notified mecab maintainer

---

Revision 7847 - (view) (download) (annotate) - [select for diffs]
Modified Mon Jan 7 17:19:44 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 895 byte(s)
Diff to previous 7824

mecab no-dsa

---

Revision 7824 - (view) (download) (annotate) - [select for diffs]
Modified Fri Jan 4 13:00:07 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 859 byte(s)
Diff to previous 7801

CVE-2007-6211 fixed in stable/oldstable by regular update

---

Revision 7801 - (view) (download) (annotate) - [select for diffs]
Modified Thu Jan 3 20:45:45 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 912 byte(s)
Diff to previous 7781

two no-dsa

---

Revision 7781 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 1 18:17:17 2008 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 914 byte(s)
Diff to previous 7779

notified maintainer for proftpd update

---

Revision 7779 - (view) (download) (annotate) - [select for diffs]
Modified Tue Jan 1 17:34:15 2008 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 880 byte(s)
Diff to previous 7768

updates on minor issues

---

Revision 7768 - (view) (download) (annotate) - [select for diffs]
Modified Sun Dec 30 15:38:26 2007 UTC (5 years, 4 months ago) by nion
Original Path: data/spu-candidates.txt
File length: 851 byte(s)
Diff to previous 7744

notified all maintainers for possible security updates for stable

---

Revision 7744 - (view) (download) (annotate) - [select for diffs]
Modified Fri Dec 28 17:22:44 2007 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 670 byte(s)
Diff to previous 7681

- syslog dos does not affect Sarge
- sing candidate for stable update

---

Revision 7681 - (view) (download) (annotate) - [select for diffs]
Modified Sat Dec 22 12:29:08 2007 UTC (5 years, 4 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 636 byte(s)
Diff to previous 7554

remove rejected ID from qemu DSA
remove some notes on rejected entries
one older php issue unimportant per PHP security policy

---

Revision 7554 - (view) (download) (annotate) - [select for diffs]
Modified Fri Dec 7 23:22:02 2007 UTC (5 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 561 byte(s)
Diff to previous 7553

iwlwifi kernel issue doesn't affect etch
netkit-ftpd-ssl no-dsa

---

Revision 7553 - (view) (download) (annotate) - [select for diffs]
Modified Fri Dec 7 22:26:44 2007 UTC (5 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 517 byte(s)
Diff to previous 7532

two more no-dsa issues

---

Revision 7532 - (view) (download) (annotate) - [select for diffs]
Added Thu Dec 6 18:19:31 2007 UTC (5 years, 5 months ago) by jmm-guest
Original Path: data/spu-candidates.txt
File length: 457 byte(s)

This file records minor security issues, which do not warrant a DSA,
but which could be fixed in a stable point update if people feel like
it. If someone wants to address these, please add a note about it
and get in contact with debian-release@lists.debian.org