[Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000204

Fri Jun 8 19:23:57 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ab9b2809 by Salvatore Bonaccorso at 2018-06-08T20:22:52+02:00
Add CVE-2018-1000204

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -502,6 +502,9 @@ CVE-2018-1002200 [arbitrary file write vulnerability / arbitrary code execution 
 	- plexus-archiver 3.6.0-1 (bug #900953)
 	NOTE: https://github.com/codehaus-plexus/plexus-archiver/pull/87
 	NOTE: https://github.com/codehaus-plexus/plexus-archiver/commit/58bc24e465c0842981692adbf6d75680298989de
+CVE-2018-1000204 [infoleak due to incorrect andling of SG_IO ioctl]
+	- linux 4.16.12-1
+	NOTE: Fixed by: https://git.kernel.org/linus/a45b599ad808c3c982fdcdc12b0b8611c2f92824
 CVE-2018-1000203 (Soar Labs Soar Coin version up to and including git commit ...)
 	NOT-FOR-US: Soar Labs Soar Coin
 CVE-2018-11814



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ab9b280945fc503268ac426cbb22b6260d7dd180

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ab9b280945fc503268ac426cbb22b6260d7dd180
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180608/b6040eed/attachment.html>
