[Git][security-tracker-team/security-tracker][master] 2 commits: Mark gitea as remove from the archive
Salvatore Bonaccorso
carnil at debian.org
Mon Oct 8 21:37:49 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bce5e2e4 by Salvatore Bonaccorso at 2018-10-08T20:33:48Z
Mark gitea as remove from the archive
- - - - -
5d9876e1 by Salvatore Bonaccorso at 2018-10-08T20:35:39Z
Add CVE-2018-1000803/gitea
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -39,7 +39,9 @@ CVE-2018-1000805 (Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.
CVE-2018-1000804 (contiki-ng version 4 contains a Buffer Overflow vulnerability in AQL ...)
TODO: check
CVE-2018-1000803 (Gitea version prior to version 1.5.1 contains a CWE-200 vulnerability ...)
- TODO: check
+ - gitea <removed>
+ NOTE: https://github.com/go-gitea/gitea/pull/4664
+ NOTE: https://github.com/go-gitea/gitea/pull/4664/files#diff-146e0c2b5bb1ea96c9fb73d509456e57
CVE-2018-18055
RESERVED
CVE-2018-18054
@@ -6816,7 +6818,7 @@ CVE-2018-15194
CVE-2018-15193 (A CSRF vulnerability in the admin panel in Gogs through 0.11.53 allows ...)
NOT-FOR-US: Go Git Service
CVE-2018-15192 (An SSRF vulnerability in webhooks in Gitea through 1.5.0-rc2 and Gogs ...)
- - gitea <unfixed>
+ - gitea <removed>
NOTE: https://github.com/go-gitea/gitea/issues/4624
CVE-2018-15191 (PHP Scripts Mall hotel-booking-script 2.0.4 allows remote attackers to ...)
NOT-FOR-US: PHP Scripts Mall
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/16e8ba4f778cb0fa99ce85f96980c95b2e3eaf81...5d9876e18d259a36e9ea2299498cdbd63498f72c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/16e8ba4f778cb0fa99ce85f96980c95b2e3eaf81...5d9876e18d259a36e9ea2299498cdbd63498f72c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181008/bbea27a3/attachment.html>
More information about the debian-security-tracker-commits
mailing list