[Git][security-tracker-team/security-tracker][master] Add fixed version for spice-gtk issues
Salvatore Bonaccorso
carnil at debian.org
Wed Sep 5 08:20:54 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
75f54811 by Salvatore Bonaccorso at 2018-09-05T07:20:32Z
Add fixed version for spice-gtk issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14086,7 +14086,7 @@ CVE-2018-10874 (In ansible it was found that inventory variables are loaded from
CVE-2018-10873 (A vulnerability was discovered in SPICE before version 0.14.1 where ...)
{DLA-1489-1 DLA-1486-1}
- spice <unfixed> (bug #906315)
- - spice-gtk <unfixed> (bug #906316)
+ - spice-gtk 0.35-1 (bug #906316)
NOTE: https://gitlab.freedesktop.org/spice/spice-common/commit/bb15d4815ab586b4c4a20f4a565970a44824c42c
CVE-2018-10872 (A flaw was found in the way the Linux kernel handled exceptions ...)
- linux <not-affected> (Red Hat specific CVE-2018-8897 regression in RHEL 6.10)
@@ -60044,7 +60044,7 @@ CVE-2017-12196 (undertow before versions 1.4.18.SP1, 2.0.2.Final, 1.4.24.Final w
CVE-2017-12195 (A flaw was found in all Openshift Enterprise versions using the ...)
NOT-FOR-US: OpenShift
CVE-2017-12194 (A flaw was found in the way spice-client processed certain messages ...)
- - spice-gtk <unfixed> (bug #898503)
+ - spice-gtk 0.35-1 (bug #898503)
[stretch] - spice-gtk <no-dsa> (Minor issue)
[jessie] - spice-gtk <no-dsa> (Minor issue)
[wheezy] - spice-gtk <not-affected> (Vulnerable code is not in any binary package, only in the source package)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/75f548114b25fe852a13e0ada20d685aa2cc9225
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/75f548114b25fe852a13e0ada20d685aa2cc9225
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180905/5af7d97e/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list