[Git][security-tracker-team/security-tracker][master] 2 commits: Annotate CVE-2018-18928 as not affecting jessie

Roberto C. Sánchez roberto at debian.org
Mon Nov 12 05:00:40 GMT 2018 

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d493e89c by Roberto C. Sánchez at 2018-11-12T04:59:12Z
Annotate CVE-2018-18928 as not affecting jessie

- - - - -
aaaeb645 by Roberto C. Sánchez at 2018-11-12T05:00:18Z
remove icu from dla-needed.txt, no remaining open CVEs

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -571,6 +571,7 @@ CVE-2018-18929
 	RESERVED
 CVE-2018-18928 (International Components for Unicode (ICU) for C/C++ 63.1 has an ...)
 	- icu <unfixed>
+	[jessie] - icu <not-affected> (Vulnerable code not present)
 	NOTE: https://bugs.chromium.org/p/chromium/issues/detail?id=900059
 	NOTE: Fixed by: https://github.com/unicode-org/icu/commit/53d8c8f3d181d87a6aa925b449b51c4a2c922a51
 	NOTE: https://unicode-org.atlassian.net/browse/ICU-20246


=====================================
data/dla-needed.txt
=====================================
@@ -21,8 +21,6 @@ enigmail (Antoine Beaupre)
 icecast2 (Abhijith PA)
   NOTE: 20181106: please upload https://git.fosscommunity.in/bhe/patches/raw/master/icecast2_deb8u2.debdiff
 --
-icu (Roberto C. Sánchez)
---
 jasper (apo)
   NOTE: 20181104: consider fixing no-dsa issues too because the package is used
   NOTE: by almost 50 % of sponsors. (apo)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/009a3d1229413c91a31e2a1d6d375bcd6ce49d66...aaaeb64549f2b548e1ad1663f7fb4a6046a9107f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/009a3d1229413c91a31e2a1d6d375bcd6ce49d66...aaaeb64549f2b548e1ad1663f7fb4a6046a9107f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181112/2b4de0c9/attachment.html>

More information about the debian-security-tracker-commits mailing list