[Git][security-tracker-team/security-tracker][master] automatic update

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8a599624 by security tracker role at 2018-07-02T08:11:05+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,7 @@
+CVE-2018-13044
+	RESERVED
+CVE-2018-13042
+	RESERVED
 CVE-2018-13041 (The mint function of a smart contract implementation for Link Platform ...)
 	NOT-FOR-US: Link Platform
 CVE-2018-13040 (OpenSID 18.06-pasca has a CSRF vulnerability. This vulnerability can ...)
@@ -363,7 +367,7 @@ CVE-2018-12884 (In Octopus Deploy 3.0 onwards (before 2018.6.7), an authenticate
 CVE-2018-1000205 (U-Boot contains a CWE-20: Improper Input Validation vulnerability in ...)
 	- u-boot <unfixed> (unimportant)
 	NOTE: No security impact as supported/packaged in Debian
-CVE-2018-13043 [code execution in grep-excuses through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing]
+CVE-2018-13043 (scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code ...)
 	- devscripts <unfixed> (low; bug #902409)
 	[stretch] - devscripts <no-dsa> (Minor issue)
 	[jessie] - devscripts <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8a599624fff7c06f3f90c5e6982f0b3fe9ebefbf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8a599624fff7c06f3f90c5e6982f0b3fe9ebefbf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180702/c0b77a90/attachment-0001.html>