[Git][security-tracker-team/security-tracker][master] new docker issue

Moritz Muehlenhoff jmm at debian.org
Wed Oct 10 12:32:42 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0a5cd6b3 by Moritz Muehlenhoff at 2018-10-10T11:31:26Z
new docker issue
one imagemagick issue n/a

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -399,6 +399,7 @@ CVE-2018-18024 (In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ..
 	NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/b268ce7a59440972f4476b9fd98104b6a836d971
 CVE-2018-18023 (In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in ...)
 	- imagemagick <unfixed>
+	[stretch] - imagemagick <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1336
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/5d71e23b853461dd3628cd1218834fcf13938365
 	NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/a5db4873626f702d2ddd8bc293573493e0a412c0
@@ -13511,7 +13512,8 @@ CVE-2018-12610
 CVE-2018-12609
 	RESERVED
 CVE-2018-12608 (An issue was discovered in Docker Moby before 17.06.0. The Docker ...)
-	TODO: check
+	- docker.io 18.03.1+dfsg1-2
+	NOTE: https://github.com/moby/moby/pull/33182
 CVE-2018-1000403 (Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier ...)
 	NOT-FOR-US: Jenkins plugin
 CVE-2018-1000402 (Jenkins project Jenkins AWS CodeDeploy Plugin version 1.19 and earlier ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0a5cd6b33a6a26c5939521fd36e9ba1e6d664e03

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0a5cd6b33a6a26c5939521fd36e9ba1e6d664e03
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181010/550eb9af/attachment.html>

More information about the debian-security-tracker-commits mailing list