[Git][security-tracker-team/security-tracker][master] 3 commits: Add references for CVE-2018-12479
Salvatore Bonaccorso
carnil at debian.org
Wed Oct 24 22:59:33 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
caff7670 by Salvatore Bonaccorso at 2018-10-24T21:56:23Z
Add references for CVE-2018-12479
- - - - -
80db656a by Salvatore Bonaccorso at 2018-10-24T21:56:51Z
Add reference for CVE-2018-12478
- - - - -
3243a108 by Salvatore Bonaccorso at 2018-10-24T21:57:14Z
Update CVE-2018-12477 information
Add references to SUSE references for CVE-2018-12477 via
https://bugzilla.suse.com/show_bug.cgi?id=1108189 .
The issue is located in the refresh_patches service.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15149,10 +15149,15 @@ CVE-2018-12480
RESERVED
CVE-2018-12479 (A Improper Input Validation vulnerability in Open Build Service allows ...)
- open-build-service <unfixed> (bug #911797)
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1108435
+ NOTE: https://github.com/openSUSE/open-build-service/commit/01b015ca2a320afc4fae823465d1e72da8bd60df
CVE-2018-12478 (A Improper Input Validation vulnerability in Open Build Service allows ...)
- open-build-service <unfixed> (bug #911797)
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1108280
CVE-2018-12477 (A Improper Neutralization of CRLF Sequences vulnerability in Open ...)
- - open-build-service <unfixed> (bug #911797)
+ NOT-FOR-US: obs-service refresh_patches
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1108189
+ NOTE: https://github.com/openSUSE/obs-service-refresh_patches/commit/d6244245dda5367767efc989446fe4b5e4609cce
CVE-2018-12476
RESERVED
CVE-2018-12475
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/950b0d7f4ab1a7033b9d1ca51cececf9ccfc3295...3243a1084fb2ec3c141d071023fb158677c07a02
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/950b0d7f4ab1a7033b9d1ca51cececf9ccfc3295...3243a1084fb2ec3c141d071023fb158677c07a02
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181024/ead7d4f4/attachment.html>
More information about the debian-security-tracker-commits
mailing list