[Git][security-tracker-team/security-tracker][master] new strongswan issue
Moritz Muehlenhoff
jmm at debian.org
Mon May 28 15:01:33 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
595bae7a by Moritz Muehlenhoff at 2018-05-28T16:01:04+02:00
new strongswan issue
podofo no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -147,6 +147,8 @@ CVE-2018-11441
RESERVED
CVE-2018-11440 (Liblouis 3.5.0 has a stack-based Buffer Overflow in the function ...)
- liblouis <unfixed> (bug #900085)
+ [stretch] - liblouis <no-dsa> (Minor issue)
+ [jessie] - liblouis <no-dsa> (Minor issue)
NOTE: https://github.com/liblouis/liblouis/issues/575
CVE-2018-11439
RESERVED
@@ -637,12 +639,18 @@ CVE-2017-18274
RESERVED
CVE-2018-11256 (An issue was discovered in PoDoFo 0.9.5. The function ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
+ [jessie] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1575851
CVE-2018-11255 (An issue was discovered in PoDoFo 0.9.5. The function ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
+ [jessie] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1575502
CVE-2018-11254 (An issue was discovered in PoDoFo 0.9.5. There is an Excessive ...)
- libpodofo <unfixed> (low)
+ [stretch] - libpodofo <no-dsa> (Minor issue)
+ [jessie] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1576174
CVE-2018-11253
RESERVED
@@ -1672,6 +1680,8 @@ CVE-2018-10812 (The Bitpie application through 3.2.4 for Android and iOS uses cl
NOT-FOR-US: Bitpie application for Android and iOS
CVE-2018-10811
RESERVED
+ - strongswan <unfixed>
+ NOTE: https://www.strongswan.org/blog/2018/05/28/strongswan-5.6.3-released.html
CVE-2018-10810 (chat/mobile/index.php in LiveZilla Live Chat 7.0.9.5 and prior is ...)
NOT-FOR-US: LiveZilla Live Chat
CVE-2018-10809 (In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) ...)
@@ -16528,6 +16538,7 @@ CVE-2018-5388 [buffer underflow in charon IKE daemon]
[wheezy] - strongswan <no-dsa> (needs root priv for access to the stroke socket)
NOTE: https://www.kb.cert.org/vuls/id/338343
NOTE: https://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=0acd1ab4
+ NOTE: https://www.strongswan.org/blog/2018/05/28/strongswan-5.6.3-released.html
CVE-2018-5387
RESERVED
CVE-2018-5386
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/595bae7a9e8310f349ccb677a2723e2c9fddf8d7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/595bae7a9e8310f349ccb677a2723e2c9fddf8d7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180528/59003f9c/attachment.html>
More information about the debian-security-tracker-commits
mailing list