[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-6561/flatpak

Fri Feb 2 21:16:14 UTC 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1cbcc76a by Salvatore Bonaccorso at 2018-02-02T22:15:42+01:00
Add CVE-2018-6561/flatpak

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -49,7 +49,9 @@ CVE-2018-6562
 CVE-2018-6561 (dijit.Editor in Dojo Toolkit 1.13 allows XSS via the onload attribute ...)
 	TODO: check
 CVE-2018-6560 (In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and ...)
-	TODO: check
+	- flatpak 0.10.3-1
+	[stretch] - flatpak <no-dsa> (Minor issue; will be fixed via point release)
+	NOTE: https://github.com/flatpak/flatpak/commit/52346bf187b5a7f1c0fe9075b328b7ad6abe78f6
 CVE-2018-6559
 	RESERVED
 CVE-2018-6558



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1cbcc76a28c9b9b0f83d556395fe6acd1aa9b90f

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1cbcc76a28c9b9b0f83d556395fe6acd1aa9b90f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180202/43588c18/attachment.html>
