[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2018-10194 as no-dsa
Salvatore Bonaccorso
carnil at debian.org
Sun Apr 29 19:45:09 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5bdf40df by Salvatore Bonaccorso at 2018-04-29T20:43:29+02:00
Mark CVE-2018-10194 as no-dsa
- - - - -
6fe0880a by Salvatore Bonaccorso at 2018-04-29T20:44:37+02:00
Record pending stretch-pu fixes for ghostscript
- - - - -
2 changed files:
- data/CVE/list
- data/next-point-update.txt
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -737,6 +737,8 @@ CVE-2018-10195 [rzsz: sz can leak data to receiving side]
CVE-2018-10194 (The set_text_distance function in devices/vector/gdevpdts.c in the ...)
{DLA-1363-1}
- ghostscript 9.22~dfsg-2.1 (bug #896069)
+ [stretch] - ghostscript <no-dsa> (Minor issue)
+ [jessie] - ghostscript <no-dsa> (Minor issue)
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=39b1e54b2968620723bf32e96764c88797714879
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699255 (not yet public)
CVE-2018-1000200 [mm, oom: fix concurrent munlock and oom reaper unmap]
=====================================
data/next-point-update.txt
=====================================
--- a/data/next-point-update.txt
+++ b/data/next-point-update.txt
@@ -63,3 +63,7 @@ CVE-2018-1059
[stretch] - dpdk 16.11.6-1+deb9u1
CVE-2017-12627
[stretch] - xerces-c 3.1.4+debian-2+deb9u1
+CVE-2016-10317
+ [stretch] - ghostscript 9.20~dfsg-3.2+deb9u2
+CVE-2018-10194
+ [stretch] - ghostscript 9.20~dfsg-3.2+deb9u2
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/6c20362363b421cba8d874671f1ee0d186b0d374...6fe0880aaf3f2d246d4377b6bca817f08ba88939
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/6c20362363b421cba8d874671f1ee0d186b0d374...6fe0880aaf3f2d246d4377b6bca817f08ba88939
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180429/a877829a/attachment.html>
More information about the debian-security-tracker-commits
mailing list