[Git][security-tracker-team/security-tracker][master] CVE-2018-10936 is fixed in libpgjava 42.2.5

Mon Aug 27 21:20:15 BST 2018

Christoph Berg pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c096953a by Christoph Berg at 2018-08-27T20:19:57Z
CVE-2018-10936 is fixed in libpgjava 42.2.5

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12442,8 +12442,8 @@ CVE-2018-10938 (A flaw was found in the Linux kernel present since v4.0-rc1 and
 CVE-2018-10937
 	RESERVED
 	NOT-FOR-US: OpenShift
-CVE-2018-10936
-	RESERVED
+CVE-2018-10936 [added server hostname verification for non-default SSL factories in sslmode=verify-full]
+	- libpgjava 42.2.5
 CVE-2018-10935 [ldapsearch with server side sort allows users to cause a crash]
 	RESERVED
 	- 389-ds-base 1.4.0.15-1 (bug #906985)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c096953af67f689a927cbec8a095710f713f01d5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c096953af67f689a927cbec8a095710f713f01d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180827/fc94c565/attachment.html>
