[Git][security-tracker-team/security-tracker][master] Add CVE-2018-1000667

Salvatore Bonaccorso carnil at debian.org
Fri Sep 7 04:18:44 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6d66bb58 by Salvatore Bonaccorso at 2018-09-07T03:18:11Z
Add CVE-2018-1000667

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -138,7 +138,10 @@ CVE-2018-1000671 (sympa version 6.2.16 and later contains a CWE-601: URL Redirec
 CVE-2018-1000668 (jsish version 2.4.70 2.047 contains a CWE-125: Out-of-bounds Read ...)
 	TODO: check
 CVE-2018-1000667 (NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains ...)
-	TODO: check
+	- nasm <unfixed> (unimportant)
+	NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392507
+	NOTE: https://github.com/cyrillos/nasm/issues/3
+	NOTE: Crash in CLI tool, no security impact
 CVE-2018-1000666 (GIG Technology NV JumpScale Portal 7 version before commit ...)
 	TODO: check
 CVE-2018-1000665 (Dojo Dojo Objective Harness (DOH) version prior to version 1.14 ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6d66bb58b00d7c166f1569fd430cfe3c2e75305c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6d66bb58b00d7c166f1569fd430cfe3c2e75305c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180907/163301ad/attachment.html>


More information about the debian-security-tracker-commits mailing list