[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add two new python issues

Salvatore Bonaccorso carnil at debian.org
Wed Apr 4 07:39:34 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
37f5ebb3 by Salvatore Bonaccorso at 2018-04-04T08:39:14+02:00
Add two new python issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -22052,10 +22052,26 @@ CVE-2018-1063 (Context relabeling of filesystems is vulnerable to symbolic link 
 	NOTE: relabeling time.
 CVE-2018-1062 (A vulnerability was discovered in oVirt 4.1.x before 4.1.9, where the ...)
 	NOT-FOR-US: ovirt-engine
-CVE-2018-1061
+CVE-2018-1061 [DOS via regular expression backtracking in difflib.IS_LINE_JUNK method in difflib]
 	RESERVED
-CVE-2018-1060
+	- python3.7 <unfixed>
+	- python3.6 <unfixed>
+	- python3.5 <unfixed>
+	- python3.4 <removed>
+	- python3.2 <removed>
+	- python2.7 <unfixed>
+	- python2.6 <removed>
+	NOTE: https://bugs.python.org/issue32981
+CVE-2018-1060 [DOS via regular expression catastrophic backtracking in apop() method in pop3lib]
 	RESERVED
+	- python3.7 <unfixed>
+	- python3.6 <unfixed>
+	- python3.5 <unfixed>
+	- python3.4 <removed>
+	- python3.2 <removed>
+	- python2.7 <unfixed>
+	- python2.6 <removed>
+	NOTE: https://bugs.python.org/issue32981
 CVE-2018-1059
 	RESERVED
 CVE-2018-1058 (A flaw was found in the way Postgresql allowed a user to modify the ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/37f5ebb32274d98e32416a28e57f93f0da846fd2

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/37f5ebb32274d98e32416a28e57f93f0da846fd2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180404/310d8367/attachment.html>

More information about the debian-security-tracker-commits mailing list