[Git][security-tracker-team/security-tracker][master] bugs

Moritz Muehlenhoff jmm at debian.org
Sat Jun 30 21:46:50 BST 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6336f68e by Moritz Muehlenhoff at 2018-06-30T22:46:23+02:00
bugs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -49,10 +49,10 @@ CVE-2018-13008 (An issue was discovered in gpmf-parser 1.1.2. There is a heap-ba
 CVE-2018-13007 (An issue was discovered in gpmf-parser 1.1.2. There is a heap-based ...)
 	NOT-FOR-US: gpmf-parser
 CVE-2018-13006 (An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based ...)
-	- gpac <unfixed>
+	- gpac <unfixed> (bug #902782)
 	NOTE: https://github.com/gpac/gpac/commit/bceb03fd2be95097a7b409ea59914f332fb6bc86
 CVE-2018-13005 (An issue was discovered in MP4Box in GPAC 0.7.1. The function urn_Read ...)
-	- gpac <unfixed>
+	- gpac <unfixed> (bug #902782)
 	NOTE: https://github.com/gpac/gpac/issues/1088
 CVE-2018-13004
 	RESERVED
@@ -12501,7 +12501,7 @@ CVE-2018-8065 (An issue was discovered in the web server in Flexense SyncBreeze 
 CVE-2017-18227 (TitanHQ WebTitan Gateway has incorrect certificate validation for the ...)
 	NOT-FOR-US: TitanHQ WebTitan Gateway
 CVE-2017-18226 (The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of ...)
-	- jabberd2 <unfixed> (low)
+	- jabberd2 <unfixed> (low; bug #902783)
 	[stretch] - jabberd2 <no-dsa> (Minor issue, default init system not affected)
 	NOTE: https://bugs.gentoo.org/631068
 CVE-2017-18225 (The Gentoo net-im/jabberd2 package through 2.6.1 installs jabberd, ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6336f68e264a0c593c27863662cbc1ac87a605b2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6336f68e264a0c593c27863662cbc1ac87a605b2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180630/03d0b3a8/attachment.html>


More information about the debian-security-tracker-commits mailing list