<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=utf-8" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<h3>

Salvatore Bonaccorso pushed to branch master

at <a href="https://salsa.debian.org/security-tracker-team/security-tracker">Debian Security Tracker / security-tracker</a>

</h3>

<h4>

Commits:

</h4>

<ul>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/0ca9d5f1f1a7aadf0097b48068c9447c853b3e7f">0ca9d5f1</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2019-01-30T09:55:40Z</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Add upstream commit reference for CVE-2019-7150

</pre>

</li>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/58fd3cc33cbcc61fd35111a249a38c3a5b2892cf">58fd3cc3</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2019-01-30T09:56:05Z</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Add upstream commit reference for CVE-2019-7149

</pre>

</li>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/441592a5149848d6fc9c6cb1342302f37b9f3294">441592a5</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2019-01-30T09:56:37Z</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Update severity for CVE-2019-7148/elfutils

Although there is an issue, and malloc() can fail on an invalid file,

nothing other furhter bad security wise can happend here as describend

in https://sourceware.org/bugzilla/show_bug.cgi?id=24085 . As such

demote severity to unimportant and add a respective explaining note on

the negligible security impact.

</pre>

</li>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/18d6b27778c218c1b334981fb73dc54be54df338">18d6b277</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2019-01-30T09:57:39Z</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Add upstream commits for CVE-2019-7146/elfutils

</pre>

</li>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/75714855580b6f1b194d2da03b1ed5d70048b267">75714855</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2019-01-30T09:57:56Z</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Update suite status for CVE-2019-7146/elfutils for stretch and earlier

</pre>

</li>

</ul>

<h4>1 changed file:</h4>

<ul>

<li class="file-stats">

<a href="#4716ef5aa8f2742228ba3b3633215c8b808565e3">

data/CVE/list

</a>

</li>

</ul>

<h4>Changes:</h4>

<li id="4716ef5aa8f2742228ba3b3633215c8b808565e3">

<a href="https://salsa.debian.org/security-tracker-team/security-tracker/compare/f51646130f07e3c91f9943ee6436d479edece4c9...75714855580b6f1b194d2da03b1ed5d70048b267#4716ef5aa8f2742228ba3b3633215c8b808565e3"><strong>data/CVE/list</strong></a>

<hr>

No preview for this file type

<br>

</li>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #777777;">

—

<br>

<a href="https://salsa.debian.org/security-tracker-team/security-tracker/compare/f51646130f07e3c91f9943ee6436d479edece4c9...75714855580b6f1b194d2da03b1ed5d70048b267">View it on GitLab</a>.

<br>

You're receiving this email because of your account on salsa.debian.org.

If you'd like to receive fewer emails, you can

adjust your notification settings.

</p>

</div>

</body>

</html>