[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-010860/libarchive-zip-perl
Salvatore Bonaccorso
carnil at debian.org
Mon Aug 20 07:55:47 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9235ab5e by Salvatore Bonaccorso at 2018-08-20T06:55:37Z
Add fixed version for CVE-2018-010860/libarchive-zip-perl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -11753,7 +11753,7 @@ CVE-2018-10861 (A flaw was found in the way ceph mon handles user requests. Any
NOTE: https://github.com/ceph/ceph/commit/975528f632f73fbffa3f1fee304e3bbe3296cffc
CVE-2018-10860 (perl-archive-zip is vulnerable to a directory traversal in ...)
{DLA-1440-1}
- - libarchive-zip-perl <unfixed> (bug #902882)
+ - libarchive-zip-perl 1.62-1 (bug #902882)
NOTE: https://github.com/redhotpenguin/perl-Archive-Zip/pull/33
NOTE: https://github.com/redhotpenguin/perl-Archive-Zip/commit/95e1df86327
CVE-2018-10859 (git-annex is vulnerable to an Information Exposure when decrypting ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9235ab5eced1c36141aeb68f2bdf8e59c67fc3ba
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9235ab5eced1c36141aeb68f2bdf8e59c67fc3ba
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180820/9b9a634e/attachment.html>
More information about the debian-security-tracker-commits
mailing list