[Git][security-tracker-team/security-tracker][master] data/CVE/list: Tag CVE-2018-1000520 as <no-dsa> for polarssl in [jessie]. Minor issue.
Mike Gabriel
sunweaver at debian.org
Tue Jul 17 16:35:26 BST 2018
Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker
Commits:
19fe5b18 by Mike Gabriel at 2018-07-17T17:35:15+02:00
data/CVE/list: Tag CVE-2018-1000520 as <no-dsa> for polarssl in [jessie]. Minor issue.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -3852,6 +3852,7 @@ CVE-2018-1000520 (ARM mbedTLS version 2.7.0 and earlier contains a Ciphersuite A
- mbedtls <unfixed> (low)
[stretch] - mbedtls <no-dsa> (Minor issue)
- polarssl <removed>
+ [jessie] - polarssl <no-dsa> (Minor issue)
NOTE: https://github.com/ARMmbed/mbedtls/issues/1561
CVE-2018-1000519 (aio-libs aiohttp-session contains a Session Fixation vulnerability in ...)
NOT-FOR-US: aio-libs aiohttp-session
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/19fe5b18b00f59a1edc98b589e3aa59af58d89f8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/19fe5b18b00f59a1edc98b589e3aa59af58d89f8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180717/c5db9645/attachment.html>
More information about the debian-security-tracker-commits
mailing list