[Git][security-tracker-team/security-tracker][master] 2 commits: add thunderbird to dsa-needed

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a9c0bc95 by Moritz Muehlenhoff at 2018-05-17T23:25:08+02:00
add thunderbird to dsa-needed

- - - - -
64d8c59c by Moritz Muehlenhoff at 2018-05-17T23:25:24+02:00
new hdf issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -52,17 +52,29 @@ CVE-2018-11209 (** DISPUTED ** An issue was discovered in Z-BlogPHP 2.0.0. ...)
 CVE-2018-11208 (** DISPUTED ** An issue was discovered in Z-BlogPHP 2.0.0. There is a ...)
 	NOT-FOR-US: Z-BlogPHP
 CVE-2018-11207 (A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in ...)
-	TODO: check
+	- hdf5 <unfixed> (low)
+	[stretch] - hdf5 <no-dsa> (Minor issue)
+	[jessie] - hdf5 <no-dsa> (Minor issue)
 CVE-2018-11206 (A out of bounds read was discovered in H5O_fill_new_decode and ...)
-	TODO: check
+	- hdf5 <unfixed> (low)
+	[stretch] - hdf5 <no-dsa> (Minor issue)
+	[jessie] - hdf5 <no-dsa> (Minor issue)
 CVE-2018-11205 (A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the ...)
-	TODO: check
+	- hdf5 <unfixed> (low)
+	[stretch] - hdf5 <no-dsa> (Minor issue)
+	[jessie] - hdf5 <no-dsa> (Minor issue)
 CVE-2018-11204 (A NULL pointer dereference was discovered in H5O__chunk_deserialize in ...)
-	TODO: check
+	- hdf5 <unfixed> (low)
+	[stretch] - hdf5 <no-dsa> (Minor issue)
+	[jessie] - hdf5 <no-dsa> (Minor issue)
 CVE-2018-11203 (A division by zero was discovered in H5D__btree_decode_key in ...)
-	TODO: check
+	- hdf5 <unfixed> (low)
+	[stretch] - hdf5 <no-dsa> (Minor issue)
+	[jessie] - hdf5 <no-dsa> (Minor issue)
 CVE-2018-11202 (A NULL pointer dereference was discovered in H5S_hyper_make_spans in ...)
-	TODO: check
+	- hdf5 <unfixed> (low)
+	[stretch] - hdf5 <no-dsa> (Minor issue)
+	[jessie] - hdf5 <no-dsa> (Minor issue)
 CVE-2018-11201
 	RESERVED
 CVE-2018-11200


=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -81,6 +81,8 @@ ruby2.3/stable
 --
 sssd/stable
 --
+thunderbird
+--
 tomcat7/oldstable
 --
 tomcat8 (seb)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/34a52dfa9ffd7e1a751008e7758ffc22ab1b8bdf...64d8c59c4242d6c534af2e6f35a1f6eece640cc3

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/34a52dfa9ffd7e1a751008e7758ffc22ab1b8bdf...64d8c59c4242d6c534af2e6f35a1f6eece640cc3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180517/33829665/attachment-0001.html>