[Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000816/grafana

Thu Dec 20 21:02:07 GMT 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
69f30417 by Salvatore Bonaccorso at 2018-12-20T21:01:44Z
Add CVE-2018-1000816/grafana

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -152,7 +152,8 @@ CVE-2018-1000820 (neo4j-contrib neo4j-apoc-procedures version before commit 45bc
 CVE-2018-1000817 (Asset Pipeline Grails Plugin Asset-pipeline plugin version Prior to ...)
 	TODO: check
 CVE-2018-1000816 (Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site ...)
-	TODO: check
+	- grafana <removed>
+	NOTE: https://github.com/grafana/grafana/issues/13667
 CVE-2018-1000815 (Brave Software Inc. Brave version version 0.22.810 to 0.24.0 contains ...)
 	NOT-FOR-US: Brave Software Inc. Brave
 CVE-2018-1000814 (aio-libs aiohttp-session version 2.6.0 and earlier contains a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/69f30417bf928f8ce5830f0089efedf18d0d035c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/69f30417bf928f8ce5830f0089efedf18d0d035c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181220/9ba72308/attachment.html>
