[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 3 commits: Mark CVE-2018-1002150 as not-affected for all Debian versions

Salvatore Bonaccorso carnil at debian.org
Sun Apr 8 09:37:00 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3f41c15d by Salvatore Bonaccorso at 2018-04-08T10:35:11+02:00
Mark CVE-2018-1002150 as not-affected for all Debian versions

- - - - -
470a1546 by Salvatore Bonaccorso at 2018-04-08T10:36:03+02:00
Add back reference for respective Debian bug

- - - - -
ca70e2f9 by Salvatore Bonaccorso at 2018-04-08T10:36:29+02:00
Add reference to upstream bug for CVE-2018-1002150

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1229,9 +1229,10 @@ CVE-2017-18257 (The __get_data_block function in fs/f2fs/data.c in the Linux ker
 	- linux 4.11.6-1
 	NOTE: Fixed by: https://git.kernel.org/linus/b86e33075ed1909d8002745b56ecf73b833db143
 CVE-2018-1002150 (Koji version 1.12, 1.13, 1.14 and 1.15 contain an incorrect access ...)
-	- koji <unfixed> (bug #894832)
+	- koji <not-affected> (Issue introduced in 1.12.0, cf. #894832)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/04/04/1
 	NOTE: https://docs.pagure.org/koji/CVE-2018-1002150/
+	NOTE: https://pagure.io/koji/issue/850
 	NOTE: Fixed by: https://pagure.io/koji/c/ab1ade7
 CVE-2018-9274 (In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ui/failure_message.c ...)
 	- wireshark <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/fea5d15dc4bd0de20fa8b53b120770220f178a33...ca70e2f9eef34ee6749cef78e6e0d483c9c24e96

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/fea5d15dc4bd0de20fa8b53b120770220f178a33...ca70e2f9eef34ee6749cef78e6e0d483c9c24e96
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180408/b13295df/attachment.html>


More information about the debian-security-tracker-commits mailing list