[Git][security-tracker-team/security-tracker][master] Reserve DLA-1610-1 for sleuthkit

Mon Dec 17 22:03:14 GMT 2018

Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d1139585 by Hugo Lefeuvre at 2018-12-17T22:02:52Z
Reserve DLA-1610-1 for sleuthkit

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[17 Dec 2018] DLA-1610-1 sleuthkit - security update
+	{CVE-2018-19497}
+	[jessie] - sleuthkit 4.1.3-4+deb8u1
 [17 Dec 2018] DLA-1609-1 libapache-mod-jk - security update
 	{CVE-2018-11759}
 	[jessie] - libapache-mod-jk 1.2.46-0+deb8u1


=====================================
data/dla-needed.txt
=====================================
@@ -118,11 +118,6 @@ qtbase-opensource-src (Adrian Bunk)
   NOTE: 20181214: Low priority but could be good to fix. Simple patches. (opal)
   NOTE: 20181215: Maintainer have no time to update, so please go ahead. (opal)
 --
-sleuthkit (Hugo Lefeuvre)
-  NOTE: 20181129: seem to be more problems than mentioned in the CVE if nodesize == rec_off or (rec_off + keylen) == nodesize (Thorsten)
-  NOTE: 20181217: these issues have been fixed in the final patch
-  NOTE: 20181217: applying it in jessie requires fix for https://github.com/sleuthkit/sleuthkit/issues/529 as well
---
 symfony (Roberto C. Sánchez)
 --
 systemd



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d113958576f5c770ae9976aba0ada6cf365625e3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d113958576f5c770ae9976aba0ada6cf365625e3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181217/7da400a0/attachment.html>
