[Git][security-tracker-team/security-tracker][master] Add CVE-2018-18314/perl
Salvatore Bonaccorso
carnil at debian.org
Thu Nov 29 20:19:41 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c9688fa4 by Salvatore Bonaccorso at 2018-11-29T20:18:43Z
Add CVE-2018-18314/perl
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6329,8 +6329,12 @@ CVE-2018-18316 (emlog v6.0.0 has CSRF via the admin/user.php?action=new URI. ...
NOT-FOR-US: emlog
CVE-2018-18315 (com/mossle/cdn/CdnController.java in lemon 1.9.0 allows attackers to ...)
NOT-FOR-US: lemon, different from src:lemon
-CVE-2018-18314
+CVE-2018-18314 [Heap-based buffer overflow]
RESERVED
+ - perl 5.28.0-3
+ [jessie] - perl <not-affected> (Vulnerable code introduced later)
+ NOTE: https://rt.cpan.org/Public/Bug/Display.html?id=131649
+ NOTE: maint-5.28: https://perl5.git.perl.org/perl.git/commitdiff/19a498a461d7c81ae3507c450953d1148efecf4f
CVE-2018-18313 [Heap-buffer-overflow read in regcomp.c]
RESERVED
- perl 5.28.0-3
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c9688fa4a4d3baf4fa3c881b73c3772a7c5d901c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c9688fa4a4d3baf4fa3c881b73c3772a7c5d901c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181129/a5831bfc/attachment.html>
More information about the debian-security-tracker-commits
mailing list