[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] zziplib no-dsa

Moritz Muehlenhoff jmm at debian.org
Wed Mar 7 21:46:55 UTC 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bd5736f4 by Moritz Muehlenhoff at 2018-03-07T22:46:27+01:00
zziplib no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -81,17 +81,20 @@ CVE-2018-7728 (An issue was discovered in Exempi through 2.4.4. ...)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=105205
 	NOTE: https://cgit.freedesktop.org/exempi/commit/?id=e163667a06a9b656a047b0ec660b871f29a83c9f
 CVE-2018-7727 (An issue was discovered in ZZIPlib 0.13.68. There is a memory leak ...)
-	- zziplib <undetermined>
+	- zziplib <unfixed> (low)
+	[stretch] - zziplib <no-dsa> (Minor issue)
+	[jessie] - zziplib <no-dsa> (Minor issue)
 	NOTE: https://github.com/gdraheim/zziplib/issues/40
-	TODO: check
 CVE-2018-7726 (An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused ...)
-	- zziplib <undetermined>
+	- zziplib <unfixed> (low)
+	[stretch] - zziplib <no-dsa> (Minor issue)
+	[jessie] - zziplib <no-dsa> (Minor issue)
 	NOTE: https://github.com/gdraheim/zziplib/issues/41
-	TODO: check
 CVE-2018-7725 (An issue was discovered in ZZIPlib 0.13.68. An invalid memory address ...)
-	- zziplib <undetermined>
+	- zziplib <unfixed> (low)
+	[stretch] - zziplib <no-dsa> (Minor issue)
+	[jessie] - zziplib <no-dsa> (Minor issue)
 	NOTE: https://github.com/gdraheim/zziplib/issues/39
-	TODO: check
 CVE-2018-7724 (The management panel in Piwigo 2.9.3 has stored XSS via the name ...)
 	- piwigo <removed>
 CVE-2018-7723 (The management panel in Piwigo 2.9.3 has stored XSS via the ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd5736f43667e6b1c2881a33acce2715680e4708

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd5736f43667e6b1c2881a33acce2715680e4708
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180307/1b1c4dbd/attachment.html>


More information about the Secure-testing-commits mailing list