[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Add fixing version for CVE-2018-7187/golang-1.10

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
323c0ec9 by Salvatore Bonaccorso at 2018-04-14T10:43:41+02:00
Add fixing version for CVE-2018-7187/golang-1.10

- - - - -
4d8c63fd by Salvatore Bonaccorso at 2018-04-14T10:53:32+02:00
Add bug reference(s) for CVE-2018-7187

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7452,11 +7452,11 @@ CVE-2018-7188 (An XSS vulnerability (via an SVG image) in Tiki before 18 allows 
 	NOT-FOR-US: Tiki
 CVE-2018-7187 (The "go get" implementation in Go 1.9.4, when the -insecure ...)
 	{DLA-1294-1}
-	- golang-1.10 <unfixed>
-	- golang-1.9 <unfixed>
-	- golang-1.8 <unfixed>
+	- golang-1.10 1.10.1-1
+	- golang-1.9 <unfixed> (bug #895663)
+	- golang-1.8 <unfixed> (bug #895664)
 	[stretch] - golang-1.8 <ignored> (Minor issue)
-	- golang-1.7 <unfixed>
+	- golang-1.7 <unfixed> (bug #895665)
 	[stretch] - golang-1.7 <ignored> (Minor issue)
 	- golang <removed>
 	[jessie] - golang <ignored> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/6fb9fcea0253750d1a0ebd449a30e06bcd5e9d80...4d8c63fd8b865fc7eff11050faafb3e8b98ae6ab

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/6fb9fcea0253750d1a0ebd449a30e06bcd5e9d80...4d8c63fd8b865fc7eff11050faafb3e8b98ae6ab
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180414/4ccf3a08/attachment.html>