[Git][security-tracker-team/security-tracker][master] Mark CVE-2018-13410/zip
Salvatore Bonaccorso
carnil at debian.org
Sat Jul 7 13:16:52 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1a7133ad by Salvatore Bonaccorso at 2018-07-07T14:16:30+02:00
Mark CVE-2018-13410/zip
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13,8 +13,10 @@ CVE-2018-13412
CVE-2018-13411
RESERVED
CVE-2018-13410 (** DISPUTED ** Info-ZIP Zip 3.0, when the -T and -TT command-line ...)
- - zip <unfixed>
+ - zip <unfixed> (unimportant)
NOTE: http://seclists.org/fulldisclosure/2018/Jul/24
+ NOTE: Negligible security impact, would involve that a untrusted party controls
+ NOTE: the -TT value.
CVE-2018-13409 (An issue was discovered in Jirafeau before 3.4.1. The "search file by ...)
NOT-FOR-US: Jirafeau
CVE-2018-13408 (An issue was discovered in Jirafeau before 3.4.1. The "search file by ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1a7133ad4060adc314724a4d4700362cadc46d3e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1a7133ad4060adc314724a4d4700362cadc46d3e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180707/899ab4c3/attachment.html>
More information about the debian-security-tracker-commits
mailing list