[Git][security-tracker-team/security-tracker][master] Add fixing version for CVE-2018-9846
Salvatore Bonaccorso
carnil at debian.org
Sat Apr 14 20:34:24 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2c3d77d6 by Salvatore Bonaccorso at 2018-04-14T21:31:32+02:00
Add fixing version for CVE-2018-9846
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -561,7 +561,7 @@ CVE-2018-9848 (In Gxlcms QY v1.0.0713, the upload function in ...)
CVE-2018-9847 (In Gxlcms QY v1.0.0713, the update function in ...)
NOT-FOR-US: Gxlcms QY
CVE-2018-9846 (In Roundcube from versions 1.2.0 to 1.3.5, with the archive plugin ...)
- - roundcube <unfixed> (bug #895184)
+ - roundcube 1.3.6+dfsg.1-1 (bug #895184)
[wheezy] - roundcube <not-affected> (Vulnerable code not present in archive.php)
NOTE: https://github.com/roundcube/roundcubemail/issues/6238
NOTE: https://github.com/roundcube/roundcubemail/commit/e3dd5b66d236867572e68fcb80281e9268a0cfb0 (release-1.3)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2c3d77d6ba25835cd25375ad2761caaecb6f292b
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2c3d77d6ba25835cd25375ad2761caaecb6f292b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180414/f3e7dd80/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list