[Git][security-tracker-team/security-tracker][master] 4 commits: Triage CVE-2018-4700 in cups for jessie LTS.
Chris Lamb
lamby at debian.org
Fri Dec 7 22:44:57 GMT 2018
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
26c4cf48 by Chris Lamb at 2018-12-07T22:38:11Z
Triage CVE-2018-4700 in cups for jessie LTS.
- - - - -
722eb247 by Chris Lamb at 2018-12-07T22:42:24Z
data/dla-needed.txt: Triage qtsvg-opensource-src for jessie.
- - - - -
1dd4cc3f by Chris Lamb at 2018-12-07T22:42:37Z
data/dla-needed.txt: Claim qtsvg-opensource-src.
- - - - -
3df22fa7 by Chris Lamb at 2018-12-07T22:43:28Z
data/dla-needed.txt: Triage radare2 for jessie.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -44783,6 +44783,7 @@ CVE-2018-4700 [Linux session cookies used a predictable random number seed]
RESERVED
- cups <unfixed> (bug #915909)
[stretch] - cups <no-dsa> (Minor issue)
+ [jessie] - cups <no-dsa> (Minor issue)
NOTE: https://github.com/apple/cups/commit/feb4c62b211bfbd78dc10d737d873439ccdfa58c (2.2.10)
NOTE: https://github.com/apple/cups/commit/b9ff93ce913ff633a3f667317e5a81fa7fe0d5d3 (2.3b6)
CVE-2018-4699
=====================================
data/dla-needed.txt
=====================================
@@ -104,6 +104,10 @@ policykit-1 (Santiago)
--
qemu
--
+qtsvg-opensource-src (Chris Lamb)
+--
+radare2
+--
samba (Emilio Pozuelo)
NOTE: 20181203: regression in upstream fix, waiting for confirmed regression fix
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/be4bdc92d84b2a6fbb4a66ecaca3a7fe813bff29...3df22fa792588354a63f23681927c5e7837fe493
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/be4bdc92d84b2a6fbb4a66ecaca3a7fe813bff29...3df22fa792588354a63f23681927c5e7837fe493
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181207/7428227f/attachment.html>
More information about the debian-security-tracker-commits
mailing list