[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] new chromium issue

Moritz Muehlenhoff jmm at debian.org
Wed Feb 14 16:00:36 UTC 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9aa97f39 by Moritz Muehlenhoff at 2018-02-14T17:00:14+01:00
new chromium issue
Jenkins NFU

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1813,6 +1813,7 @@ CVE-2018-6357 (The acx_asmw_saveorder_callback function in function.php in the .
 	NOT-FOR-US: acurax-social-media-widget plugin for WordPress
 CVE-2018-6356
 	RESERVED
+	- jenkins <removed>
 CVE-2018-6355 (/goform/setLang on iBall 300M devices with "iB-WRB302N_1.0.1-Sep 8 ...)
 	NOT-FOR-US: iBall 300M devices
 CVE-2018-6354 (templates/forms/thanks.html in Formspree before 2018-01-23 allows XSS ...)
@@ -2490,6 +2491,11 @@ CVE-2018-6057
 	RESERVED
 CVE-2018-6056
 	RESERVED
+	- chromium-browser <unfixed>
+	[jessie] - chromium-browser <end-of-life> (End of life, see DSA 4020)
+	[wheezy] - chromium-browser <end-of-life> (Not supported in Wheezy)
+	- libv8 <unfixed> (unimportant)
+	NOTE: libv8 not covered by security support
 CVE-2018-6055
 	RESERVED
 CVE-2018-6054


=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa
 --
 389-ds-base (fw)
 --
+chromium-browser/stable
+--
 ffmpeg/stable
   Wait for next 3.2.x release
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9aa97f39240e7c5b7a7271ce3b3250d0644d51a7

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9aa97f39240e7c5b7a7271ce3b3250d0644d51a7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180214/b1aa9d17/attachment-0001.html>

More information about the Secure-testing-commits mailing list