[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-20346/{sqlite3,chromium} for "Magellan" issue

Salvatore Bonaccorso carnil at debian.org
Fri Dec 21 21:11:25 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cfebf09e by Salvatore Bonaccorso at 2018-12-21T21:08:11Z
Add CVE-2018-20346/{sqlite3,chromium} for "Magellan" issue

- - - - -
5730a2c2 by Salvatore Bonaccorso at 2018-12-21T21:09:45Z
Move entry for CVE-2018-20346 for chromium-browser in stretch to DSA-4352-1

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -587,10 +587,9 @@ CVE-2018-20174
 	RESERVED
 CVE-2018-20173 (Zoho ManageEngine OpManager 12.3 before 123238 allows SQL injection via ...)
 	NOT-FOR-US: Zoho ManageEngine OpManager
-CVE-2018-XXXX ["Magellan" remote code execution vulnerability]
+CVE-2018-20346 ["Magellan" remote code execution vulnerability]
 	- sqlite3 3.25.3-1
 	- chromium 71.0.3578.80-1
-	[stretch] - chromium-browser 71.0.3578.80-1~deb9u1
 	NOTE: https://blade.tencent.com/magellan/index_en.html
 	NOTE: RedHat: https://bugzilla.redhat.com/show_bug.cgi?id=1659379
 	NOTE: Fedora: https://bugzilla.redhat.com/show_bug.cgi?id=1659677


=====================================
data/DSA/list
=====================================
@@ -14,7 +14,7 @@
 	{CVE-2018-14851 CVE-2018-14883 CVE-2018-17082 CVE-2018-19518 CVE-2018-19935}
 	[stretch] - php7.0 7.0.33-0+deb9u1
 [07 Dec 2018] DSA-4352-1 chromium-browser - security update
-	{CVE-2018-17480 CVE-2018-17481 CVE-2018-18335 CVE-2018-18336 CVE-2018-18337 CVE-2018-18338 CVE-2018-18339 CVE-2018-18340 CVE-2018-18341 CVE-2018-18342 CVE-2018-18343 CVE-2018-18344 CVE-2018-18345 CVE-2018-18346 CVE-2018-18347 CVE-2018-18348 CVE-2018-18349 CVE-2018-18350 CVE-2018-18351 CVE-2018-18352 CVE-2018-18353 CVE-2018-18354 CVE-2018-18355 CVE-2018-18356 CVE-2018-18357 CVE-2018-18358 CVE-2018-18359}
+	{CVE-2018-17480 CVE-2018-17481 CVE-2018-18335 CVE-2018-18336 CVE-2018-18337 CVE-2018-18338 CVE-2018-18339 CVE-2018-18340 CVE-2018-18341 CVE-2018-18342 CVE-2018-18343 CVE-2018-18344 CVE-2018-18345 CVE-2018-18346 CVE-2018-18347 CVE-2018-18348 CVE-2018-18349 CVE-2018-18350 CVE-2018-18351 CVE-2018-18352 CVE-2018-18353 CVE-2018-18354 CVE-2018-18355 CVE-2018-18356 CVE-2018-18357 CVE-2018-18358 CVE-2018-18359 CVE-2018-20346}
 	[stretch] - chromium-browser 71.0.3578.80-1~deb9u1
 [07 Dec 2018] DSA-4351-1 libphp-phpmailer - security update
 	{CVE-2018-19296}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/1b850994111c9cc9e91b689b629784cd86ece604...5730a2c241123a7d2a2d54f09bad4f11023e1940

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/1b850994111c9cc9e91b689b629784cd86ece604...5730a2c241123a7d2a2d54f09bad4f11023e1940
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181221/bb86d2be/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list