[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-6382/mantis
Salvatore Bonaccorso
carnil at debian.org
Tue Jan 30 09:29:37 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0691289b by Salvatore Bonaccorso at 2018-01-30T10:29:10+01:00
Add CVE-2018-6382/mantis
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -39,7 +39,9 @@ CVE-2018-6384
CVE-2018-6383 (Monstra CMS through 3.0.4 has an incomplete "forbidden types" list that ...)
NOT-FOR-US: Monstra CMS
CVE-2018-6382 (MantisBT 2.10.0 allows local users to conduct SQL Injection attacks via ...)
- TODO: check
+ - mantis <removed>
+ [wheezy] - mantis <end-of-life> (Not supported in Wheezy)
+ NOTE: https://mantisbt.org/bugs/view.php?id=23908
CVE-2018-6381 (In ZZIPlib 0.13.67, there is a segmentation fault caused by invalid ...)
- zziplib <unfixed>
NOTE: https://github.com/gdraheim/zziplib/issues/12
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0691289b7934b1d1abd8be9b15968e0cafba9620
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0691289b7934b1d1abd8be9b15968e0cafba9620
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180130/910afcf9/attachment.html>
More information about the Secure-testing-commits
mailing list