[Git][security-tracker-team/security-tracker][master] Add CVE-2018-16430/libextractor
Salvatore Bonaccorso
carnil at debian.org
Tue Sep 4 21:21:08 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
399ead3b by Salvatore Bonaccorso at 2018-09-04T20:20:39Z
Add CVE-2018-16430/libextractor
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -59,7 +59,9 @@ CVE-2018-16432 (BlueCMS 1.6 allows SQL Injection via the user_name parameter to
CVE-2018-16431 (admin/admin/adminsave.html in YFCMF v3.0 allows CSRF to add an ...)
NOT-FOR-US: YFCMF
CVE-2018-16430 (GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in ...)
- TODO: check
+ - libextractor <unfixed>
+ NOTE: https://gnunet.org/bugs/view.php?id=5405
+ NOTE: https://gnunet.org/git/libextractor.git/commit/?id=24c8d489797499c0331f4d1039e357ece1ae98a7
CVE-2018-16429 (GNOME GLib 2.56.1 has an out-of-bounds read vulnerability in ...)
TODO: check
CVE-2018-16428 (In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/399ead3b4d3050289d89aa04da6aae089201efc1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/399ead3b4d3050289d89aa04da6aae089201efc1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180904/d740b190/attachment.html>
More information about the debian-security-tracker-commits
mailing list