[Git][security-tracker-team/security-tracker][master] 2 commits: Put temporary description in [] brackets

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d59a8831 by Salvatore Bonaccorso at 2018-10-01T12:03:16Z
Put temporary description in [] brackets

- - - - -
3febb4cd by Salvatore Bonaccorso at 2018-10-01T12:04:13Z
Add reference to advisory and commits

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1885,8 +1885,11 @@ CVE-2018-16986
 	RESERVED
 CVE-2018-16985 (In Lizard (formerly LZ5) 2.0, use of an invalid memory address was ...)
 	NOT-FOR-US: Lizard
-CVE-2018-16984 (Password hash disclosure to "view only" admin users)
+CVE-2018-16984 [Password hash disclosure to "view only" admin users]
 	- python-django <unfixed> (bug #910016)
+	NOTE: https://www.djangoproject.com/weblog/2018/oct/01/security-release/
+	NOTE: https://github.com/django/django/commit/bf39978a53f117ca02e9a0c78b76664a41a54745 (master)
+	NOTE: https://github.com/django/django/commit/c4bd5b597e0aa2432e4c867b86650f18af117851 (2.1)
 CVE-2018-16983 (NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other ...)
 	- mozilla-noscript <unfixed> (unimportant)
 	NOTE: This is not a security issue in NoScript by itself



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ac2eb633b232eb5fea6eeba7214a10e773b45b6b...3febb4cd80769b84522615532d401b5f1f5288ae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/ac2eb633b232eb5fea6eeba7214a10e773b45b6b...3febb4cd80769b84522615532d401b5f1f5288ae
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181001/3324c083/attachment.html>