[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVEs for firmware-nonfree as no-dsa

[Thorsten Alteholz]

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8af18f5f by Thorsten Alteholz at 2018-10-23T14:05:47Z
mark CVEs for firmware-nonfree as no-dsa

- - - - -
710a9090 by Thorsten Alteholz at 2018-10-23T14:07:00Z
mark CVEs for tcpreplay as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -440,11 +440,13 @@ CVE-2018-18409 (A stack-based buffer over-read exists in setbit() at iptree.h of
 CVE-2018-18408 (A use-after-free was discovered in the tcpbridge binary of Tcpreplay ...)
 	- tcpreplay <unfixed> (bug #911493)
 	[stretch] - tcpreplay <no-dsa> (Minor issue)
+	[jessie] - tcpreplay <no-dsa> (Minor issue)
 	NOTE: https://github.com/appneta/tcpreplay/issues/489
 	NOTE: https://github.com/appneta/tcpreplay/commit/59dc76a1d641b1a6b22fd7cd409bee6e0a015616
 CVE-2018-18407 (A heap-based buffer over-read was discovered in the tcpreplay-edit ...)
 	- tcpreplay <unfixed> (bug #911454)
 	[stretch] - tcpreplay <no-dsa> (Minor issue)
+	[jessie] - tcpreplay <no-dsa> (Minor issue)
 	NOTE: https://github.com/appneta/tcpreplay/issues/488
 	NOTE: https://github.com/appneta/tcpreplay/commit/1d7561a4d542842a1aeabf55bfd4aaf88b3a1071
 CVE-2018-18406
@@ -62669,12 +62671,14 @@ CVE-2017-13081 (Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w
 	{DSA-3999-1 DLA-1150-1}
 	- firmware-nonfree 20180825-1
 	[stretch] - firmware-nonfree <no-dsa> (non-free not supported)
+	[jessie] - firmware-nonfree <no-dsa> (non-free not supported)
 	- wpa 2:2.4-1.1
 	NOTE: https://w1.fi/security/2017-1/
 CVE-2017-13080 (Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the ...)
 	{DSA-3999-1 DLA-1200-1 DLA-1150-1}
 	- firmware-nonfree 20180825-1
 	[stretch] - firmware-nonfree <no-dsa> (non-free not supported)
+	[jessie] - firmware-nonfree <no-dsa> (non-free not supported)
 	- wpa 2:2.4-1.1
 	- linux 4.13.13-1
 	[stretch] - linux 4.9.65-1
@@ -62685,18 +62689,21 @@ CVE-2017-13079 (Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w
 	{DSA-3999-1 DLA-1150-1}
 	- firmware-nonfree 20180825-1
 	[stretch] - firmware-nonfree <no-dsa> (non-free not supported)
+	[jessie] - firmware-nonfree <no-dsa> (non-free not supported)
 	- wpa 2:2.4-1.1
 	NOTE: https://w1.fi/security/2017-1/
 CVE-2017-13078 (Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the ...)
 	{DSA-3999-1 DLA-1150-1}
 	- firmware-nonfree 20180825-1
 	[stretch] - firmware-nonfree <no-dsa> (non-free not supported)
+	[jessie] - firmware-nonfree <no-dsa> (non-free not supported)
 	- wpa 2:2.4-1.1
 	NOTE: https://w1.fi/security/2017-1/
 CVE-2017-13077 (Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the ...)
 	{DSA-3999-1 DLA-1150-1}
 	- firmware-nonfree 20180825-1
 	[stretch] - firmware-nonfree <no-dsa> (non-free not supported)
+	[jessie] - firmware-nonfree <no-dsa> (non-free not supported)
 	- wpa 2:2.4-1.1
 	NOTE: https://w1.fi/security/2017-1/
 CVE-2017-13076



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/f22cafa3fb8345844918e77c4e7d417494a7eea6...710a909024afa195d0aac371135268f671af053c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/f22cafa3fb8345844918e77c4e7d417494a7eea6...710a909024afa195d0aac371135268f671af053c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181023/c0968144/attachment.html>