[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Take squirrelmail from dsa-needed list
Salvatore Bonaccorso
carnil at debian.org
Sat Apr 7 09:30:10 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
457452de by Salvatore Bonaccorso at 2018-04-07T10:29:54+02:00
Take squirrelmail from dsa-needed list
- - - - -
38e0d32a by Salvatore Bonaccorso at 2018-04-07T10:29:54+02:00
Reference fix for CVE-2018-8741
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2620,6 +2620,7 @@ CVE-2018-8768 (In Jupyter Notebook before 5.4.1, a maliciously forged notebook f
CVE-2018-8741 (A directory traversal flaw in SquirrelMail 1.4.22 allows an ...)
- squirrelmail <removed> (bug #893202)
NOTE: http://www.openwall.com/lists/oss-security/2018/03/17/2
+ NOTE: https://sourceforge.net/p/squirrelmail/code/14751/
CVE-2018-8740 (In SQLite through 3.22.0, databases whose schema is corrupted using a ...)
- sqlite3 3.22.0-2 (bug #893195)
[stretch] - sqlite3 <no-dsa> (Minor issue)
=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -78,7 +78,7 @@ ruby2.1/oldstable
--
ruby2.3/stable
--
-squirrelmail/oldstable
+squirrelmail/oldstable (carnil)
--
sqlite3/oldstable
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8ca34f43ec458065b33372a9c35e33c60c19cfb2...38e0d32a632fd136a96c47ab660e304d440a16d7
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8ca34f43ec458065b33372a9c35e33c60c19cfb2...38e0d32a632fd136a96c47ab660e304d440a16d7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180407/d0f4febc/attachment.html>
More information about the debian-security-tracker-commits
mailing list