[Git][security-tracker-team/security-tracker][master] Record fixed version for procps
Salvatore Bonaccorso
carnil at debian.org
Sun May 20 16:06:15 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7eeb9fd7 by Salvatore Bonaccorso at 2018-05-20T17:05:13+02:00
Record fixed version for procps
That's not yet technically correct, since the version is not yet in
unstable but landed in NEW. But it's there only due to a new binary
package built and it should be soonish processed (thus already
recording the version in advance as expection).
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -27752,27 +27752,27 @@ CVE-2018-1127
NOT-FOR-US: tendrl-api
CVE-2018-1126 [0035-proc-alloc.-Use-size_t-not-unsigned-int.patch]
RESERVED
- - procps <unfixed> (bug #899170)
+ - procps 2:3.3.15-1 (bug #899170)
NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
NOTE: Patch: 0035-proc-alloc.-Use-size_t-not-unsigned-int.patch
CVE-2018-1125 [0008-pgrep-Prevent-a-potential-stack-based-buffer-overflo.patch]
RESERVED
- - procps <unfixed> (bug #899170)
+ - procps 2:3.3.15-1 (bug #899170)
NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
NOTE: Patch: 0008-pgrep-Prevent-a-potential-stack-based-buffer-overflo.patch
CVE-2018-1124 [Local Privilege Escalation in libprocps]
RESERVED
- - procps <unfixed> (bug #899170)
+ - procps 2:3.3.15-1 (bug #899170)
NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
NOTE: Patch: 0074-proc-readproc.c-Fix-bugs-and-overflows-in-file2strve.patch
CVE-2018-1123 [Denial of Service in ps]
RESERVED
- - procps <unfixed> (bug #899170)
+ - procps 2:3.3.15-1 (bug #899170)
NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
NOTE: Patch: 0054-ps-output.c-Fix-outbuf-overflows-in-pr_args-etc.patch
CVE-2018-1122 [Local Privilege Escalation in top]
RESERVED
- - procps <unfixed> (bug #899170)
+ - procps 2:3.3.15-1 (bug #899170)
NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
NOTE: Patch: 0097-top-Do-not-default-to-the-cwd-in-configs_read.patch
CVE-2018-1121 [Unprivileged process hiding]
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7eeb9fd70c9cd56d6c6a93365c8917adc3d3aee9
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7eeb9fd70c9cd56d6c6a93365c8917adc3d3aee9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180520/f1bcbf9b/attachment.html>
More information about the debian-security-tracker-commits
mailing list