[Git][security-tracker-team/security-tracker][master] mark CVE-2018-1257 as no-dsa in jessie
Abhijith PA
gitlab at salsa.debian.org
Thu Nov 1 12:20:39 GMT 2018
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0c5ef8a1 by Abhijith PA at 2018-11-01T12:20:04Z
mark CVE-2018-1257 as no-dsa in jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -47828,6 +47828,7 @@ CVE-2018-1258 (Spring Framework version 5.0.5 when used in combination with any
NOTE: https://pivotal.io/security/cve-2018-1258
CVE-2018-1257 (Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior ...)
- libspring-java <unfixed>
+ [jessie] - libspring-java <no-dsa> (hard to find upstream commits regarding this)
NOTE: https://pivotal.io/security/cve-2018-1257
CVE-2018-1256 (Spring Cloud SSO Connector, version 2.1.2, contains a regression which ...)
NOT-FOR-US: Spring Cloud SSO Connector
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c5ef8a112e91408dbd193c549d525ff2fee22f0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0c5ef8a112e91408dbd193c549d525ff2fee22f0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181101/5fa8990a/attachment.html>
More information about the debian-security-tracker-commits
mailing list