[Git][security-tracker-team/security-tracker][master] Add workaround entry for incomplete fix for CVE-2018-10886
Salvatore Bonaccorso
carnil at debian.org
Sun Aug 5 08:24:29 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
558fd941 by Salvatore Bonaccorso at 2018-08-05T07:24:00Z
Add workaround entry for incomplete fix for CVE-2018-10886
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10251,6 +10251,8 @@ CVE-2018-10887 (A flaw was found in libgit2 before version 0.27.3. It has been .
CVE-2018-XXXX [Incomplete fix for CVE-2018-10886]
- ant 1.10.5-1 (bug #904191)
[stretch] - ant <not-affected> (Incomplete fix for CVE-2018-10886 not applied)
+ [jessie] - ant 1.9.4-3+deb8u2
+ NOTE: Workaround entry for DLA-1457-1 (as no CVE will be assigned by its CNA)
NOTE: https://github.com/apache/ant/commit/6a41d62cb9ab4e640b72cb4de42a6c211dea645d
NOTE: https://github.com/apache/ant/commit/5a8c37b271677587046bfd0fea18c1675d5a6300
NOTE: https://bz.apache.org/bugzilla/show_bug.cgi?id=62502
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/558fd941fee97b53646752959d8306e7a5c1421f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/558fd941fee97b53646752959d8306e7a5c1421f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180805/fe580e50/attachment.html>
More information about the debian-security-tracker-commits
mailing list