[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] w3m fixed
Moritz Muehlenhoff
jmm at debian.org
Thu Jan 25 13:54:10 UTC 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9bebbe94 by Moritz Muehlenhoff at 2018-01-25T14:54:01+01:00
w3m fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -249,18 +249,18 @@ CVE-2017-1000502 (Users with permission to create or configure agents in Jenkins
CVE-2017-1000474 (Soyket Chowdhury Vehicle Sales Management System version 2017-07-30 is ...)
NOT-FOR-US: Soyket Chowdhury Vehicle Sales Management System
CVE-2018-6198 (w3m through 0.5.3 does not properly handle temporary files when the ...)
- - w3m <unfixed> (bug #888097; unimportant)
+ - w3m 0.5.3-36 (bug #888097; unimportant)
NOTE: https://github.com/tats/w3m/commit/18dcbadf2771cdb0c18509b14e4e73505b242753
NOTE: Neutralised by kernel hardening
CVE-2018-6197 (w3m through 0.5.3 is prone to a NULL pointer dereference flaw in ...)
- - w3m <unfixed>
+ - w3m 0.5.3-36 (low)
[stretch] - w3m <no-dsa> (Minor issue)
[jessie] - w3m <no-dsa> (Minor issue)
[wheezy] - w3m <no-dsa> (Minor issue)
NOTE: https://github.com/tats/w3m/issues/89
NOTE: https://github.com/tats/w3m/commit/7fdc83b0364005a0b5ed869230dd81752ba022e8
CVE-2018-6196 (w3m through 0.5.3 is prone to an infinite recursion flaw in ...)
- - w3m <unfixed>
+ - w3m 0.5.3-36 (low
[stretch] - w3m <no-dsa> (Minor issue)
[jessie] - w3m <no-dsa> (Minor issue)
[wheezy] - w3m <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9bebbe941b7379efa9f5bbe9fcad581f25849c71
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9bebbe941b7379efa9f5bbe9fcad581f25849c71
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180125/73d2fe3a/attachment.html>
More information about the Secure-testing-commits
mailing list