[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add upstream claimed (and checked for the respective commit) fixed version for CVE-2018-6954
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 8 05:40:47 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
58b4ede8 by Salvatore Bonaccorso at 2018-03-08T06:39:20+01:00
Add upstream claimed (and checked for the respective commit) fixed version for CVE-2018-6954
"claimed" since there was a followup to the upstream issue at
https://github.com/systemd/systemd/issues/7986#issuecomment-371315606
claiming the issue is not entirely fixed.
Might need an incomplete-fix CVE.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2409,7 +2409,7 @@ CVE-2018-6956
CVE-2018-6955
RESERVED
CVE-2018-6954 (systemd-tmpfiles in systemd through 237 mishandles symlinks present in ...)
- - systemd <unfixed> (bug #890779)
+ - systemd 238-1 (bug #890779)
[stretch] - systemd <postponed> (Minor issue, revisit if/when fixed upstream)
[jessie] - systemd <postponed> (Minor issue, revisit if/when fixed upstream)
[wheezy] - systemd <not-affected> (/etc/tmpfiles.d not supported in Wheezy)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58b4ede87f273918118aa50b3d4fef626e8d6d1d
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58b4ede87f273918118aa50b3d4fef626e8d6d1d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180308/dc514ce0/attachment.html>
More information about the Secure-testing-commits
mailing list