[Git][security-tracker-team/security-tracker][master] 3 commits: Add ghostscript to dsa-needed list

Thu Nov 22 21:48:57 GMT 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
71192006 by Salvatore Bonaccorso at 2018-11-22T21:17:54Z
Add ghostscript to dsa-needed list

- - - - -
299fb36e by Salvatore Bonaccorso at 2018-11-22T21:46:59Z
Add php issue (no CVE assigned yet)

- - - - -
3729900c by Salvatore Bonaccorso at 2018-11-22T21:48:16Z
Merge remote-tracking branch 'origin/master'

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2018-XXXX [imap_open() script injection]
+	- php7.3 <unfixed> (bug #913775)
+	- php7.2 <removed> (bug #913835)
+	- php7.0 <removed> (bug #913836)
+	- php5 <removed>
+	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77153
+	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77160
+	NOTE: https://www.openwall.com/lists/oss-security/2018/11/22/3
 CVE-2018-19454
 	RESERVED
 CVE-2018-19453


=====================================
data/dsa-needed.txt
=====================================
@@ -18,6 +18,8 @@ If needed, specify the release by adding a slash after the name of the source pa
 ansible
   Maintainer is preparing updates
 --
+ghostscript (carnil)
+--
 glusterfs
 --
 libapache-mod-jk



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/7d55fdc0650b9b91eeb2b311f6a6a26d1d83c8a4...3729900c943d97b1ad864cff298e87b438678f5e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/7d55fdc0650b9b91eeb2b311f6a6a26d1d83c8a4...3729900c943d97b1ad864cff298e87b438678f5e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181122/143d80f8/attachment.html>
