[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1000517/busybox
Salvatore Bonaccorso
carnil at debian.org
Fri Jul 13 04:58:32 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c77b7868 by Salvatore Bonaccorso at 2018-07-13T05:57:58+02:00
Add fixed version for CVE-2018-1000517/busybox
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3118,7 +3118,7 @@ CVE-2018-1000519 (aio-libs aiohttp-session contains a Session Fixation vulnerabi
CVE-2018-1000518 (aaugustin websockets version 4 contains a CWE-409: Improper Handling ...)
NOT-FOR-US: aaugustin websockets
CVE-2018-1000517 (BusyBox project BusyBox wget version prior to commit ...)
- - busybox <unfixed> (low; bug #902724)
+ - busybox 1:1.27.2-3 (low; bug #902724)
NOTE: https://git.busybox.net/busybox/commit/?id=8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e
CVE-2018-1000516 (The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper ...)
NOT-FOR-US: Galaxy Project Galaxy
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c77b78687bda904a190c627a3d0e9374d311b135
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c77b78687bda904a190c627a3d0e9374d311b135
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180713/319e750c/attachment.html>
More information about the debian-security-tracker-commits
mailing list