[Git][security-tracker-team/security-tracker][master] Add references for CVE-2015-926{7,8}/nsis
Salvatore Bonaccorso
carnil at debian.org
Sat Oct 6 19:45:26 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0f7c39ea by Salvatore Bonaccorso at 2018-10-06T18:43:59Z
Add references for CVE-2015-926{7,8}/nsis
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -496,8 +496,10 @@ CVE-2018-17794 (An issue was discovered in cplus-dem.c in GNU libiberty, as dist
NOTE: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=87350
CVE-2015-9268 (Nullsoft Scriptable Install System (NSIS) before 2.49 has unsafe ...)
- nsis 2.50-1
+ NOTE: https://sourceforge.net/p/nsis/bugs/1125/
CVE-2015-9267 (Nullsoft Scriptable Install System (NSIS) before 2.49 uses temporary ...)
- nsis 2.50-1
+ NOTE: https://sourceforge.net/p/nsis/bugs/1125/
CVE-2018-17793 (Virtualenv 16.0.0 allows a sandbox escape via "python $(bash >&2)" and ...)
- python-virtualenv <unfixed> (unimportant)
NOTE: https://github.com/pypa/virtualenv/issues/1207
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0f7c39ea37e80aa23fb9fe129bf204b9694187bc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0f7c39ea37e80aa23fb9fe129bf204b9694187bc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181006/093df464/attachment.html>
More information about the debian-security-tracker-commits
mailing list