[Git][security-tracker-team/security-tracker][master] new strongswan issue

Moritz Muehlenhoff jmm at debian.org
Mon May 28 15:01:33 BST 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
595bae7a by Moritz Muehlenhoff at 2018-05-28T16:01:04+02:00
new strongswan issue
podofo no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -147,6 +147,8 @@ CVE-2018-11441
 	RESERVED
 CVE-2018-11440 (Liblouis 3.5.0 has a stack-based Buffer Overflow in the function ...)
 	- liblouis <unfixed> (bug #900085)
+	[stretch] - liblouis <no-dsa> (Minor issue)
+	[jessie] - liblouis <no-dsa> (Minor issue)
 	NOTE: https://github.com/liblouis/liblouis/issues/575
 CVE-2018-11439
 	RESERVED
@@ -637,12 +639,18 @@ CVE-2017-18274
 	RESERVED
 CVE-2018-11256 (An issue was discovered in PoDoFo 0.9.5. The function ...)
 	- libpodofo <unfixed> (low)
+	[stretch] - libpodofo <no-dsa> (Minor issue)
+	[jessie] - libpodofo <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1575851
 CVE-2018-11255 (An issue was discovered in PoDoFo 0.9.5. The function ...)
 	- libpodofo <unfixed> (low)
+	[stretch] - libpodofo <no-dsa> (Minor issue)
+	[jessie] - libpodofo <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1575502
 CVE-2018-11254 (An issue was discovered in PoDoFo 0.9.5. There is an Excessive ...)
 	- libpodofo <unfixed> (low)
+	[stretch] - libpodofo <no-dsa> (Minor issue)
+	[jessie] - libpodofo <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1576174
 CVE-2018-11253
 	RESERVED
@@ -1672,6 +1680,8 @@ CVE-2018-10812 (The Bitpie application through 3.2.4 for Android and iOS uses cl
 	NOT-FOR-US: Bitpie application for Android and iOS
 CVE-2018-10811
 	RESERVED
+	- strongswan <unfixed>
+	NOTE: https://www.strongswan.org/blog/2018/05/28/strongswan-5.6.3-released.html
 CVE-2018-10810 (chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is ...)
 	NOT-FOR-US: LiveZilla Live Chat
 CVE-2018-10809 (In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) ...)
@@ -16528,6 +16538,7 @@ CVE-2018-5388 [buffer underflow in charon IKE daemon]
 	[wheezy] - strongswan <no-dsa> (needs root priv for access to the stroke socket)
 	NOTE: https://www.kb.cert.org/vuls/id/338343
 	NOTE: https://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=0acd1ab4
+	NOTE: https://www.strongswan.org/blog/2018/05/28/strongswan-5.6.3-released.html
 CVE-2018-5387
 	RESERVED
 CVE-2018-5386



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/595bae7a9e8310f349ccb677a2723e2c9fddf8d7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/595bae7a9e8310f349ccb677a2723e2c9fddf8d7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180528/59003f9c/attachment.html>


More information about the debian-security-tracker-commits mailing list