[Git][security-tracker-team/security-tracker][master] Reference directly qualys report for CVE-2018-112{0..6}

Salvatore Bonaccorso carnil at debian.org
Tue May 22 16:09:28 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2671c701 by Salvatore Bonaccorso at 2018-05-22T17:08:41+02:00
Reference directly qualys report for CVE-2018-112{0..6}

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -27882,40 +27882,47 @@ CVE-2018-1126 [0035-proc-alloc.-Use-size_t-not-unsigned-int.patch]
 	RESERVED
 	- procps 2:3.3.15-1 (bug #899170)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 	NOTE: Patch: 0035-proc-alloc.-Use-size_t-not-unsigned-int.patch
 	NOTE: https://gitlab.com/procps-ng/procps/commit/f1077b7a558a5545837aae068422e58f1f9b1d33
 CVE-2018-1125 [0008-pgrep-Prevent-a-potential-stack-based-buffer-overflo.patch]
 	RESERVED
 	- procps 2:3.3.15-1 (bug #899170)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 	NOTE: Patch: 0008-pgrep-Prevent-a-potential-stack-based-buffer-overflo.patch
 	NOTE: https://gitlab.com/procps-ng/procps/commit/b51ca2a1f8ca779f7632ade6a0a259ed882fa584
 CVE-2018-1124 [Local Privilege Escalation in libprocps]
 	RESERVED
 	- procps 2:3.3.15-1 (bug #899170)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 	NOTE: Patch: 0074-proc-readproc.c-Fix-bugs-and-overflows-in-file2strve.patch
 	NOTE: https://gitlab.com/procps-ng/procps/commit/36c350f07c75aabf747fb833f52a234ae5781b20
 CVE-2018-1123 [Denial of Service in ps]
 	RESERVED
 	- procps 2:3.3.15-1 (bug #899170)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 	NOTE: Patch: 0054-ps-output.c-Fix-outbuf-overflows-in-pr_args-etc.patch
 	NOTE: https://gitlab.com/procps-ng/procps/commit/136e3724952827bbae8887a42d9d2b6f658a48ab
 CVE-2018-1122 [Local Privilege Escalation in top]
 	RESERVED
 	- procps 2:3.3.15-1 (bug #899170)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 	NOTE: Patch: 0097-top-Do-not-default-to-the-cwd-in-configs_read.patch
 	NOTE: https://gitlab.com/procps-ng/procps/commit/b45c4803dd176f4e3f9d3d47421ddec9bbbe66cd
 CVE-2018-1121 [Unprivileged process hiding]
 	RESERVED
 	- linux <unfixed> (unimportant)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 CVE-2018-1120 [FUSE-backed /proc/PID/cmdline]
 	RESERVED
 	- linux <unfixed>
 	NOTE: http://www.openwall.com/lists/oss-security/2018/05/17/1
+	NOTE: https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
 	NOTE: Fixed by: https://git.kernel.org/linus/7f7ccc2ccc2e70c6054685f5e3522efa81556830
 CVE-2018-1119
 	REJECTED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2671c701e95d6d52b1dd70c9acfa3c430e2408ee

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2671c701e95d6d52b1dd70c9acfa3c430e2408ee
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180522/29b8f255/attachment.html>


More information about the debian-security-tracker-commits mailing list