[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2018-1055 rejected in favour of CVE-2018-6871

Salvatore Bonaccorso carnil at debian.org
Fri Feb 9 19:59:41 UTC 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b0b75c5f by Salvatore Bonaccorso at 2018-02-09T20:58:40+01:00
CVE-2018-1055 rejected in favour of CVE-2018-6871

After querying MITRE CNA about the duplicated assigned CVE the decision
was made to keep CVE-2018-6871.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7,7 +7,6 @@ CVE-2018-6872 (The elf_parse_notes function in elf.c in the Binary File Descript
 CVE-2018-6871 (LibreOffice through 6.0.1 allows remote attackers to read arbitrary ...)
 	- libreoffice 1:6.0.1-1
 	NOTE: https://github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
-	NOTE: Duplicate of CVE-2018-1055
 CVE-2018-6870
 	RESERVED
 CVE-2018-6869 (In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a ...)
@@ -15252,11 +15251,7 @@ CVE-2018-1056 [heap buffer overflow while running advzip]
 	RESERVED
 	- advancecomp <unfixed> (bug #889270)
 CVE-2018-1055
-	RESERVED
-	- libreoffice 1:6.0.1-1
-	NOTE: https://github.com/jollheef/libreoffice-remote-arbitrary-file-disclosure
-	NOTE: Duplicate of CVE-2018-6871
-	TODO: Ask MITRE to reject
+	REJECTED
 CVE-2018-1054
 	RESERVED
 CVE-2018-1053 [Ensure that all temp files made during pg_upgrade are non-world-readable]



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0b75c5f3b1d566698e7faef159d27d9eba3529a

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0b75c5f3b1d566698e7faef159d27d9eba3529a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180209/562207c3/attachment.html>

More information about the Secure-testing-commits mailing list