[Git][security-tracker-team/security-tracker][master] Track version where cantata disables the cantata-mounter

Salvatore Bonaccorso carnil at debian.org
Wed Jun 20 09:02:17 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
739e9497 by Salvatore Bonaccorso at 2018-06-20T10:02:02+02:00
Track version where cantata disables the cantata-mounter

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -50,7 +50,7 @@ CVE-2018-12563 (An issue was discovered in Linaro LAVA before 2018.5.post1. Beca
 	- lava-server <removed>
 	NOTE: https://git.linaro.org/lava/lava.git/commit/?id=e24ec39599bc07562ad8bc2a581144b8448cb214
 CVE-2018-12562 (An issue was discovered in the cantata-mounter D-Bus service in Cantata ...)
-	- cantata <unfixed> (bug #901798)
+	- cantata 2.3.0.ds1-2 (bug #901798)
 	[stretch] - cantata <ignored> (cantata-mounter and service not installed)
 	[jessie] - cantata <ignored> (cantata-mounter and service not installed)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/06/18/1
@@ -60,9 +60,10 @@ CVE-2018-12562 (An issue was discovered in the cantata-mounter D-Bus service in 
 	NOTE: no-dsa/ignored status is not fully correct, but we cannot state
 	NOTE: "unimportant" severity just for one suite and unstable is more severily
 	NOTE: affected.
+	NOTE: 2.3.0.ds1-2 disables the cantata-mounter
 	NOTE: https://github.com/CDrummond/cantata/commit/afc4f8315d3e96574925fb530a7004cc9e6ce3d3
 CVE-2018-12561 (An issue was discovered in the cantata-mounter D-Bus service in Cantata ...)
-	- cantata <unfixed> (bug #901798)
+	- cantata 2.3.0.ds1-2 (bug #901798)
 	[stretch] - cantata <ignored> (cantata-mounter and service not installed)
 	[jessie] - cantata <ignored> (cantata-mounter and service not installed)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/06/18/1
@@ -72,9 +73,10 @@ CVE-2018-12561 (An issue was discovered in the cantata-mounter D-Bus service in 
 	NOTE: no-dsa/ignored status is not fully correct, but we cannot state
 	NOTE: "unimportant" severity just for one suite and unstable is more severily
 	NOTE: affected.
+	NOTE: 2.3.0.ds1-2 disables the cantata-mounter
 	NOTE: https://github.com/CDrummond/cantata/commit/afc4f8315d3e96574925fb530a7004cc9e6ce3d3
 CVE-2018-12560 (An issue was discovered in the cantata-mounter D-Bus service in Cantata ...)
-	- cantata <unfixed> (bug #901798)
+	- cantata 2.3.0.ds1-2 (bug #901798)
 	[stretch] - cantata <ignored> (cantata-mounter and service not installed)
 	[jessie] - cantata <ignored> (cantata-mounter and service not installed)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/06/18/1
@@ -83,9 +85,10 @@ CVE-2018-12560 (An issue was discovered in the cantata-mounter D-Bus service in 
 	NOTE: if `-DENABLE_REMOTE_DEVICES=ON` was passed to the cmake invocation.
 	NOTE: no-dsa/ignored status is not fully correct, but we cannot state
 	NOTE: "unimportant" severity just for one suite and unstable is more severily
+	NOTE: 2.3.0.ds1-2 disables the cantata-mounter
 	NOTE: affected.
 CVE-2018-12559 (An issue was discovered in the cantata-mounter D-Bus service in Cantata ...)
-	- cantata <unfixed> (bug #901798)
+	- cantata 2.3.0.ds1-2 (bug #901798)
 	[stretch] - cantata <ignored> (cantata-mounter and service not installed)
 	[jessie] - cantata <ignored> (cantata-mounter and service not installed)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/06/18/1
@@ -95,6 +98,7 @@ CVE-2018-12559 (An issue was discovered in the cantata-mounter D-Bus service in 
 	NOTE: no-dsa/ignored status is not fully correct, but we cannot state
 	NOTE: "unimportant" severity just for one suite and unstable is more severily
 	NOTE: affected.
+	NOTE: 2.3.0.ds1-2 disables the cantata-mounter
 	NOTE: https://github.com/CDrummond/cantata/commit/afc4f8315d3e96574925fb530a7004cc9e6ce3d3
 CVE-2018-12558 [DOS vulnerability]
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/739e9497b0882cb5f4d65d270914cce139f0d73e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/739e9497b0882cb5f4d65d270914cce139f0d73e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180620/9ea37bb6/attachment.html>


More information about the debian-security-tracker-commits mailing list