[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] CVE-2015-5621 and CVE-2018-1000116 are addressed with same patch (although two issues)
Salvatore Bonaccorso
carnil at debian.org
Mon Mar 26 17:20:44 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1afa9762 by Salvatore Bonaccorso at 2018-03-26T19:20:37+02:00
CVE-2015-5621 and CVE-2018-1000116 are addressed with same patch (although two issues)
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -122053,7 +122053,6 @@ CVE-2015-3310 (Buffer overflow in the rc_mksid function in plugins/radius/util.c
CVE-2015-5621 (The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and ...)
- net-snmp 5.7.3+dfsg-1.1 (bug #788964)
[jessie] - net-snmp <no-dsa> (Minor issue)
- [wheezy] - net-snmp <no-dsa> (Minor issue)
[squeeze] - net-snmp <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2015/04/13/1
NOTE: Upstream patch: https://sourceforge.net/p/net-snmp/code/ci/f23bcd3ac6ddee5d0a48f9703007ccc738914791/
=====================================
data/DLA/list
=====================================
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -2,7 +2,7 @@
{CVE-2018-7051}
[wheezy] - irssi 0.8.15-5+deb7u6
[26 Mar 2018] DLA-1317-1 net-snmp - security update
- {CVE-2018-1000116}
+ {CVE-2015-5621 CVE-2018-1000116}
[wheezy] - net-snmp 5.4.3~dfsg-2.8+deb7u2
[24 Mar 2018] DLA-1316-1 freeplane - security update
{CVE-2018-1000069}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1afa9762e28eb1494c7df751f5d744948e7c8e06
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1afa9762e28eb1494c7df751f5d744948e7c8e06
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180326/7309e89d/attachment-0001.html>
More information about the Secure-testing-commits
mailing list