[Git][security-tracker-team/security-tracker][master] mark CVE-2018-1199 as no-dsa in jessie
Abhijith PA
gitlab at salsa.debian.org
Thu Nov 1 12:06:37 GMT 2018
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
51d5fb5b by Abhijith PA at 2018-11-01T12:06:03Z
mark CVE-2018-1199 as no-dsa in jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -47946,6 +47946,7 @@ CVE-2018-1200 (Apps Manager for PCF (Pivotal Application Service 1.11.x before .
CVE-2018-1199 (Spring Security (Spring Security 4.1.x before 4.1.5, 4.2.x before ...)
- libspring-java 4.3.14-1 (bug #890001)
[wheezy] - libspring-java <ignored> (Too intrusive to fix by upgrade)
+ [jessie] - libspring-java <no-dsa> (fix for spring-security available but not for springframework)
- libspring-security-java <itp> (bug #582181)
NOTE: https://pivotal.io/security/cve-2018-1199
CVE-2018-1198 (Pivotal Cloud Cache, versions prior to 1.3.1, prints a superuser ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/51d5fb5b689952e6c914e5b981d71aa9295c4e1f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/51d5fb5b689952e6c914e5b981d71aa9295c4e1f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181101/23d0d256/attachment.html>
More information about the debian-security-tracker-commits
mailing list