[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add futher notes for CVE-2018-1000161

Salvatore Bonaccorso carnil at debian.org
Wed Apr 11 20:49:50 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
64a0ed57 by Salvatore Bonaccorso at 2018-04-11T21:47:17+02:00
Add futher notes for CVE-2018-1000161

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -415,7 +415,12 @@ CVE-2018-1000161 [directory traversal in the way the non-default http-fetch scri
 	[stretch] - nmap <no-dsa> (Minor issue)
 	[jessie] - nmap <not-affected> (Vulnerable code not present)
 	[wheezy] - nmap <not-affected> (Vulnerable code not present)
-	NOTE: script added in 6.49BETA6 according to https://bugzilla.novell.com/show_bug.cgi?id=CVE-2018-1000161
+	NOTE: Fixed by: https://github.com/nmap/nmap/commit/098e32713650f54732472f31245b7eca936b2bd8
+	NOTE: Fixed by: https://github.com/nmap/nmap/commit/da0c861299ae1ce6268e9591838f7a1144b327d7
+	NOTE: Fixed by: https://github.com/nmap/nmap/commit/88631b50676c38824e01d30819f46258a8497b0a
+	NOTE: Fixed by: https://github.com/nmap/nmap/commit/80e1977308e51b1b7aa038a38f8837a7e90b3849
+	NOTE: Introduced in https://github.com/nmap/nmap/commit/88381c2e685297a4fafe7182a06877b27da34e1e
+	NOTE: Script added in 6.49BETA6 (cf. https://bugzilla.novell.com/show_bug.cgi?id=1088608#c1)
 CVE-2018-1000157
 	REJECTED
 CVE-2018-9838 (The caml_ba_deserialize function in byterun/bigarray.c in the standard ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/64a0ed57c995e6fc1d2b158d58ea4f8fb2a1b82d

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/64a0ed57c995e6fc1d2b158d58ea4f8fb2a1b82d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180411/27f6cbd3/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list