[Git][security-tracker-team/security-tracker][master] Update jetty entry in dla-needed
Hugo Lefeuvre
hle at debian.org
Mon Jul 2 15:47:25 BST 2018
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bc937c07 by Hugo Lefeuvre at 2018-07-02T10:46:53-04:00
Update jetty entry in dla-needed
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -42,6 +42,10 @@ ipsec-tools
NOTE: CVE-2016-10396 fixed in wheezy. No further point release so this should be fixed this way instead.
--
jetty (Hugo Lefeuvre)
+ NOTE: CVE-2018-12536 fixed in latest upstream release but looks like upstream
+ NOTE: voluntarily obfuscated the issue by hiding the fix in a bunch of unrelated
+ NOTE: changes. Still need to reproduce.
+ NOTE: I highly suspect a51920d650d924cc2cea011995624b394437c6e0. Needs test.
--
kdepim
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bc937c07eacd81df64d476dbcfa0eb764dfbfd2e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bc937c07eacd81df64d476dbcfa0eb764dfbfd2e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180702/5e66a30e/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list