[Git][security-tracker-team/security-tracker][master] Some more notes about wordpress analysis.

Sun Dec 16 11:18:52 GMT 2018

Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker


Commits:
095d0779 by Ola Lundqvist at 2018-12-16T11:18:26Z
Some more notes about wordpress analysis.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -143,7 +143,9 @@ uw-imap (Roberto C. Sánchez)
 wireshark (Thorsten Alteholz)
 --
 wordpress
-  NOTE: 2018-12-16: Triaging was made without source code check so it could be so that some of the issues are not present in 4.1. (Ola)
+  NOTE: 2018-12-16: Triaging was made without mapping source code diff against the reported vulnerabilities.
+  NOTE: 2018-12-16: Some of the issues are clearly applicable to the jessie version but some source code files
+  NOTE: 2018-12-16: did not exist in the older version. It was not trivial to find the CVE for that one. (Ola)
   NOTE: CVE-2018-20149: Less serious than the others for this package but should still be worth fixing.
   NOTE: CVE-2018-20150: Less serious than the others for this package but should still be worth fixing.
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/095d0779cdf280606f5d096d2eabdcf08e863e01

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/095d0779cdf280606f5d096d2eabdcf08e863e01
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181216/43f460b9/attachment-0001.html>
