[Git][security-tracker-team/security-tracker][master] ncurses no-dsa

Moritz Muehlenhoff jmm at debian.org
Sun May 6 11:41:47 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
490c47fc by Moritz Muehlenhoff at 2018-05-06T12:40:51+02:00
ncurses no-dsa
abcm2ps unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7,16 +7,16 @@ CVE-2018-10756
 CVE-2018-10755
 	RESERVED
 CVE-2018-10754 (In ncurses before 6.1.20180414, there is a NULL Pointer Dereference in ...)
-	- ncurses <unfixed>
+	- ncurses <unfixed> (low)
+	[stretch] - ncurses <no-dsa> (Minor issue)
+	[jessie] - ncurses <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1566575
 	NOTE: https://invisible-island.net/ncurses/NEWS.html#t20180414
 CVE-2018-10753 (Stack-based buffer overflow in the delayed_output function in music.c ...)
-	- abcm2ps <unfixed> (bug #897966)
-	[stretch] - abcm2ps <no-dsa> (Minor issue)
-	[jessie] - abcm2ps <no-dsa> (Minor issue)
-	[wheezy] - abcm2ps <no-dsa> (Minor issue)
+	- abcm2ps <unfixed> (unimportant; bug #897966)
 	NOTE: https://github.com/leesavide/abcm2ps/issues/16
 	NOTE: https://github.com/leesavide/abcm2ps/commit/fd956e19f88ee32f8ec4aece5901400b06e80bcc
+	NOTE: Crash in CLI tool, no security impact
 CVE-2018-10752 (The Tagregator plugin 0.6 for WordPress has stored XSS via the title ...)
 	NOT-FOR-US: Tagregator plugin for WordPress
 CVE-2018-10751



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/490c47fc0f9e059e7465c01661e01e721666a152

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/490c47fc0f9e059e7465c01661e01e721666a152
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180506/6f17224a/attachment.html>

More information about the debian-security-tracker-commits mailing list