[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark CVE-2018-7567 as yet unfixed
Salvatore Bonaccorso
carnil at debian.org
Mon Mar 5 06:32:24 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0a1da394 by Salvatore Bonaccorso at 2018-03-05T07:31:34+01:00
Mark CVE-2018-7567 as yet unfixed
The changes in upstream 6.0.2 related to the Admin Package Manger does
not seem(!) related to this issue. To be on safe side mark it for now as
unfixed.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -308,10 +308,9 @@ CVE-2018-1000105
CVE-2018-1000104
NOT-FOR-US: Jenkins plugin
CVE-2018-7567 (In the Admin Package Manager in Open Ticket Request System (OTRS) 5.0.0 ...)
- - otrs2 6.0.2-1
+ - otrs2 <unfixed>
[stretch] - otrs2 <no-dsa> (non-free not supported)
NOTE: PoC https://0day.today/exploit/29938
- NOTE: According with the reporter, affects "5.0.0 through 5.0.24 and 6.0.0 through 6.0.1".
CVE-2018-7566 [ALSA: seq: Fix racy pool initializations]
RESERVED
- linux <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0a1da39444470de28df4baf0c9123a4a12907c6b
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0a1da39444470de28df4baf0c9123a4a12907c6b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180305/92fe8b06/attachment-0001.html>
More information about the Secure-testing-commits
mailing list