[Git][security-tracker-team/security-tracker][master] Reference fix for CVE-2018-13458, CVE-2018-13457 and CVE-2018-13441
Salvatore Bonaccorso
carnil at debian.org
Sun Dec 23 13:15:29 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
6b4c9d74 by Salvatore Bonaccorso at 2018-12-23T13:12:58Z
Reference fix for CVE-2018-13458, CVE-2018-13457 and CVE-2018-13441
Specific to nagios4 code fixed with same commit for the three issues
(NULL ppointer dereference in thee functions qh_echo, qh_help and
qh_core).
https://gist.github.com/fakhrizulkifli/8df4a174158df69ebd765f824bd736b8
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24343,9 +24343,11 @@ CVE-2018-13459
CVE-2018-13458 (qh_core in Nagios Core 4.4.1 and earlier is prone to a NULL pointer ...)
- nagios4 <unfixed> (low)
NOTE: https://gist.github.com/fakhrizulkifli/40f3daf52950cca6de28ebec2498ff6e
+ NOTE: https://github.com/NagiosEnterprises/nagioscore/commit/b1a92a3b52d292ccb601e77a0b29cb1e67ac9d76
CVE-2018-13457 (qh_echo in Nagios Core 4.4.1 and earlier is prone to a NULL pointer ...)
- nagios4 <unfixed> (low)
NOTE: https://gist.github.com/fakhrizulkifli/87cf1c1ad403b4d40a86d90c9c9bf7ab
+ NOTE: https://github.com/NagiosEnterprises/nagioscore/commit/b1a92a3b52d292ccb601e77a0b29cb1e67ac9d76
CVE-2018-13456
RESERVED
CVE-2018-13455
@@ -24383,6 +24385,7 @@ CVE-2018-13442
CVE-2018-13441 (qh_help in Nagios Core version 4.4.1 and earlier is prone to a NULL ...)
- nagios4 <unfixed> (low)
NOTE: https://gist.github.com/fakhrizulkifli/8df4a174158df69ebd765f824bd736b8
+ NOTE: https://github.com/NagiosEnterprises/nagioscore/commit/b1a92a3b52d292ccb601e77a0b29cb1e67ac9d76
CVE-2018-13440 (The audiofile Audio File Library 0.3.6 has a NULL pointer dereference ...)
- audiofile <unfixed> (low; bug #903499)
[stretch] - audiofile <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b4c9d741fa2d379a3ef3ae6ee1c5e8758f5f309
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6b4c9d741fa2d379a3ef3ae6ee1c5e8758f5f309
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181223/cebc427b/attachment.html>
More information about the debian-security-tracker-commits
mailing list