[Git][security-tracker-team/security-tracker][master] Add fixed version for virtualbox issue
Salvatore Bonaccorso
carnil at debian.org
Sun Nov 11 07:45:35 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a97ef998 by Salvatore Bonaccorso at 2018-11-11T07:45:05Z
Add fixed version for virtualbox issue
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -222,11 +222,11 @@ CVE-2018-19057 (SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted I
CVE-2018-19056 (pandao Editor.md 1.5.0 has DOM XSS via input starting with a "<<" ...)
NOT-FOR-US: pandao Editor.md
CVE-2018-XXXX [VirtualBox E1000 Guest-to-Host Escape]
- - virtualbox <unfixed> (bug #913137)
+ - virtualbox 5.2.22-dfsg-1 (bug #913137)
[jessie] - virtualbox <end-of-life> (DSA-3699-1)
NOTE: https://github.com/MorteNoir1/virtualbox_e1000_0day
NOTE: Changes between 5.2.20 and 5.2.22: https://paste.debian.net/plain/1051089
- TODO: confirm on if issue fixed completely with the changes in 5.2.22
+ NOTE: https://github.com/MorteNoir1/virtualbox_e1000_0day/issues/12
CVE-2018-19055
RESERVED
CVE-2018-19054
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a97ef998be12331a5d8061c533cf2cf3522d7fc4
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a97ef998be12331a5d8061c533cf2cf3522d7fc4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181111/83ed2d72/attachment.html>
More information about the debian-security-tracker-commits
mailing list