[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] patch unimportant

Moritz Muehlenhoff jmm at debian.org
Tue Feb 13 21:52:39 UTC 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
12d02e1c by Moritz Muehlenhoff at 2018-02-13T22:52:19+01:00
patch unimportant
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4,12 +4,14 @@ CVE-2018-6954 (systemd-tmpfiles in systemd through 237 mishandles symlinks prese
 CVE-2018-6953 (In CCN-lite 2, the Parser of NDNTLV does not verify whether a certain ...)
 	NOT-FOR-US: CCN-lite 2
 CVE-2018-6952 (A double free exists in the another_hunk function in pch.c in GNU patch ...)
-	- patch <unfixed>
+	- patch <unfixed> (unimportant)
 	NOTE: https://savannah.gnu.org/bugs/index.php?53133
+	NOTE: Crash in CLI tool, no security impact
 CVE-2018-6951 (An issue was discovered in GNU patch through 2.7.6. There is a ...)
-	- patch <unfixed>
+	- patch <unfixed> (unimportant)
 	NOTE: https://git.savannah.gnu.org/cgit/patch.git/commit/?id=f290f48a621867084884bfff87f8093c15195e6a
 	NOTE: https://savannah.gnu.org/bugs/index.php?53132
+	NOTE: Crash in CLI tool, no security impact
 CVE-2018-6950
 	RESERVED
 CVE-2018-6949
@@ -95,8 +97,9 @@ CVE-2017-18181
 CVE-2017-18180
 	RESERVED
 CVE-2016-10713 (An issue was discovered in GNU patch before 2.7.6. Out-of-bounds access ...)
-	- patch <unfixed>
+	- patch <unfixed> (unimportant)
 	NOTE: https://git.savannah.gnu.org/cgit/patch.git/commit/src/pch.c?id=a0d7fe4589651c64bd16ddaaa634030bb0455866
+	NOTE: Crash in CLI tool, no security impact
 CVE-2015-9252 (An issue was discovered in QPDF before 7.0.0. Endless recursion causes ...)
 	- qpdf 7.0.0-1
 	[stretch] - qpdf <no-dsa> (Minor issue)
@@ -5419,6 +5422,7 @@ CVE-2018-4953
 	RESERVED
 CVE-2018-4952
 	RESERVED
+	NOT-FOR-US: VMware Xenon
 CVE-2018-4951
 	RESERVED
 CVE-2018-4950



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/12d02e1cb2a85c88eba1afb8629b6df9c0028e8f

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/12d02e1cb2a85c88eba1afb8629b6df9c0028e8f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180213/076294e5/attachment-0001.html>

More information about the Secure-testing-commits mailing list