[Git][security-tracker-team/security-tracker][master] Add further commit reference for CVE-2018-15126
Salvatore Bonaccorso
carnil at debian.org
Sat Dec 29 08:13:19 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dc113158 by Salvatore Bonaccorso at 2018-12-29T08:12:58Z
Add further commit reference for CVE-2018-15126
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20695,7 +20695,8 @@ CVE-2018-15127 (LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de co
CVE-2018-15126 (LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains ...)
- libvncserver <not-affected> (Vulnerable code introduced after 0.9.11 release)
NOTE: https://github.com/LibVNC/libvncserver/issues/242
- NOTE: https://github.com/LibVNC/libvncserver/commit/73cb96fec028a576a5a24417b57723b55854ad7b
+ NOTE: Fixed by: https://github.com/LibVNC/libvncserver/commit/162d716b4c095a87aab2261857d583d68e3b3ea6
+ NOTE: main part of the fix: https://github.com/LibVNC/libvncserver/commit/73cb96fec028a576a5a24417b57723b55854ad7b
NOTE: https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-027-libvnc-heap-use-after-free/
CVE-2018-15125 (Sensitive Information Disclosure in Zipato Zipabox Smart Home ...)
NOT-FOR-US: Zipato
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dc113158edddd4281e6f281ceb39f241c86f1bde
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dc113158edddd4281e6f281ceb39f241c86f1bde
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181229/dc7d0a52/attachment.html>
More information about the debian-security-tracker-commits
mailing list