[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2018-18443 as no-dsa for jessie

[Thorsten Alteholz]

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b74e878f by Thorsten Alteholz at 2018-10-25T18:02:45Z
mark CVE-2018-18443 as no-dsa for jessie

- - - - -
1ae3f638 by Thorsten Alteholz at 2018-10-25T18:03:22Z
add qemu

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -503,6 +503,7 @@ CVE-2018-18444 (makeMultiView.cpp in exrmultiview in OpenEXR 2.3.0 has an out-of
 CVE-2018-18443 (OpenEXR 2.3.0 has a memory leak in ThreadPool in ...)
 	- openexr <unfixed>
 	[stretch] - openexr <no-dsa> (Minor issue)
+	[jessie] - openexr <no-dsa> (Minor issue)
 	NOTE: https://github.com/openexr/openexr/issues/350
 CVE-2018-18442
 	RESERVED


=====================================
data/dla-needed.txt
=====================================
@@ -78,6 +78,8 @@ poppler (Mike Gabriel)
   NOTE: 20180928: Consider fixing no-dsa/ignored bugs as well since this is
   NOTE: 20180928: frequently used package.
 --
+qemu
+--
 salt (Antoine Beaupre)
   NOTE: 20180921: CVE-2017-7893 is not crucial since the managed system must be
   NOTE: 20180921: compromised first. But the security escalation effect can cause



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d1de1f3c9bae8233484a69424628efb88b7ecab9...1ae3f638a5c4b7ee62ad91e629f9b02d1f16d0ab

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/d1de1f3c9bae8233484a69424628efb88b7ecab9...1ae3f638a5c4b7ee62ad91e629f9b02d1f16d0ab
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181025/89672c36/attachment-0001.html>