[Git][security-tracker-team/security-tracker][master] discount issues are fixed in sid

Alessandro Ghedini ghedo at debian.org
Sat Aug 11 12:51:50 BST 2018 

Alessandro Ghedini pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a435135e by Alessandro Ghedini at 2018-08-11T11:51:22Z
discount issues are fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -6776,7 +6776,7 @@ CVE-2018-12497
 CVE-2018-12496
 	RESERVED
 CVE-2018-12495 (The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT ...)
-	- discount <unfixed> (bug #901912)
+	- discount 2.2.4-1 (bug #901912)
 	NOTE: https://github.com/Orc/discount/issues/189#issuecomment-397541501
 CVE-2018-12494 (An issue discovered in PublicCMS V4.0.20180210. There is a "Directory ...)
 	NOT-FOR-US: PublicCMS
@@ -9411,11 +9411,11 @@ CVE-2018-11506 (The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux
 CVE-2018-11505 (The Werewolf Online application 0.8.8 for Android allows attackers to ...)
 	NOT-FOR-US: Werewolf Online application for Android
 CVE-2018-11504 (The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a ...)
-	- discount <unfixed> (bug #901912)
+	- discount 2.2.4-1 (bug #901912)
 	NOTE: https://github.com/Orc/discount/issues/189#issuecomment-392247798
 	NOTE: POC: https://github.com/fCorleone/fuzz_programs/blob/master/discount/issue3_testcase
 CVE-2018-11503 (The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT ...)
-	- discount <unfixed> (bug #901912)
+	- discount 2.2.4-1 (bug #901912)
 	NOTE: https://github.com/Orc/discount/issues/189#issuecomment-392247798
 	NOTE: POC: https://github.com/fCorleone/fuzz_programs/blob/master/discount/issue2_testcase
 CVE-2018-11502
@@ -9507,7 +9507,7 @@ CVE-2018-11469 (Incorrect caching of responses to requests including an Authoriz
 	[jessie] - haproxy <not-affected> (Issue introduced in 1.8.0)
 	NOTE: https://git.haproxy.org/?p=haproxy-1.8.git;a=commit;h=17514045e5d934dede62116216c1b016fe23dd06
 CVE-2018-11468 (The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISCOUNT ...)
-	- discount <unfixed> (bug #901912)
+	- discount 2.2.4-1 (bug #901912)
 	NOTE: https://github.com/Orc/discount/issues/189
 	NOTE: POC: https://github.com/fCorleone/fuzz_programs/blob/master/discount/issue1_testcase
 CVE-2018-11467



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a435135e51e1c33a2fd3f60f2635ff71211015cf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a435135e51e1c33a2fd3f60f2635ff71211015cf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180811/08ce7b9d/attachment.html>

More information about the debian-security-tracker-commits mailing list