[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Mark postgresql-9.1 CVE-2018-1058 as minor in wheezy

Brian May bam at debian.org
Mon Mar 12 21:03:59 UTC 2018 

Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c5f9ebda by Brian May at 2018-03-13T08:03:23+11:00
Mark postgresql-9.1 CVE-2018-1058 as minor in wheezy

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -19000,6 +19000,7 @@ CVE-2018-1058 (A flaw was found in the way Postgresql allowed a user to modify t
 	[jessie] - postgresql-9.4 <no-dsa> (Minor issue; documentation update for recommendations)
 	- postgresql-9.1 <removed>
 	[jessie] - postgresql-9.1 <not-affected> (postgresql-9.1 in jessie is PL/Perl only)
+	[wheezy] - postgresql-9.1 <no-dsa> (Minor issue)
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=3d2aed664ee8271fd6c721ed0aa10168cda112ea
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=582edc369cdbd348d68441fc50fa26a84afd0c1a
 	NOTE: https://git.postgresql.org/gitweb/?p=postgresql.git;a=commit;h=5770172cb0c9df9e6ce27c507b449557e5b45124


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -84,9 +84,6 @@ openjdk-7 (Emilio Pozuelo)
 php5
   NOTE: 20180226: consider reviewing the backlog of issues fixed in jessie to see if it is worth fixing a few DOS in the backlog (anarcat)
 --
-postgresql-9.1
-  NOTE: 20180227: confirm jessie's diagnostic (N/A) and see if it applies to wheezy. maintainer not contacted yet.
---
 python-crypto
   NOTE: Incomplete fix for CVE-2018-6594.
   NOTE: See https://lists.debian.org/debian-lts/2018/02/msg00069.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c5f9ebda154d6ba8d4df17bd05affeff34cd7184

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c5f9ebda154d6ba8d4df17bd05affeff34cd7184
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180312/3f1f3cc3/attachment.html>

More information about the Secure-testing-commits mailing list