[Git][security-tracker-team/security-tracker][master] libssh fixed

Moritz Muehlenhoff jmm at debian.org
Tue Oct 16 16:58:57 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
edc99744 by Moritz Muehlenhoff at 2018-10-16T15:58:23Z
libssh fixed
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18746,7 +18746,7 @@ CVE-2018-10934
 	- wildfly <itp> (bug #752018)
 CVE-2018-10933
 	RESERVED
-	- libssh <unfixed> (bug #911149)
+	- libssh 0.8.4-1 (bug #911149)
 	NOTE: https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
 	NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=2bddafeb709eacc80ad31fec40479f9b628a8bd7 (master)
 	NOTE: https://git.libssh.org/projects/libssh.git/commit/?id=825f4ba96407abe8cebb046a7503fa2bf5de9df6 (master)
@@ -48830,7 +48830,7 @@ CVE-2018-0674 (AttacheCase ver.2.8.4.0 and earlier allows an arbitrary script ..
 CVE-2018-0673
 	RESERVED
 CVE-2018-0672 (Cross-site scripting vulnerability in Movable Type versions prior to ...)
-	TODO: check
+	- movabletype-opensource <removed>
 CVE-2018-0671
 	RESERVED
 CVE-2018-0670
@@ -48890,7 +48890,7 @@ CVE-2018-0644 (Buffer overflow in Ubuntu14.04 ORCA (Online Receipt Computer ...)
 CVE-2018-0643 (Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 ...)
 	NOT-FOR-US: ORCA (Online Receipt Computer Advantage)
 CVE-2018-0642 (Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 ...)
-	TODO: check
+	NOT-FOR-US: FV Flowplayer Video Player
 CVE-2018-0641
 	RESERVED
 CVE-2018-0640
@@ -51711,7 +51711,7 @@ CVE-2017-16641 (lib/rrd.php in Cacti 1.1.27 allows remote authenticated administ
 CVE-2017-16640
 	RESERVED
 CVE-2017-16639 (Tor Browser on Windows before 8.0 allows remote attackers to bypass ...)
-	TODO: check
+	NOT-FOR-US: Tor Browser on Windows
 CVE-2008-7319 (The Net::Ping::External extension through 0.15 for Perl does not ...)
 	- libnet-ping-external-perl <removed> (bug #881097)
 	[wheezy] - libnet-ping-external-perl <ignored> (Package may be removed from Wheezy, see #881102)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/edc9974441267b8de3f9b0dfa8f15d495d9f47e2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/edc9974441267b8de3f9b0dfa8f15d495d9f47e2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181016/6348d17c/attachment.html>

More information about the debian-security-tracker-commits mailing list