[Git][security-tracker-team/security-tracker][master] add openafs to dsa-needed

Moritz Muehlenhoff jmm at debian.org
Mon Sep 17 17:06:43 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
263431f6 by Moritz Muehlenhoff at 2018-09-17T16:05:34Z
add openafs to dsa-needed
fix up thunderbird entry, this got fixed under a CVE ID from the Mozilla CNA

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -32132,7 +32132,7 @@ CVE-2018-5185 (Plaintext of decrypted emails can leak through by user submitting
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/#CVE-2018-5185
 CVE-2018-5184 (Using remote content in encrypted messages can lead to the disclosure ...)
 	{DSA-4209-1 DLA-1382-1}
-	- thunderbird 1:52.8.0-1
+	- thunderbird 1:52.8.0-1 (bug #898631)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/#CVE-2018-5184
 CVE-2018-5183 (Mozilla developers backported selected changes in the Skia library. ...)
 	{DSA-4209-1 DSA-4199-1 DLA-1382-1 DLA-1376-1}
@@ -39996,9 +39996,6 @@ CVE-2017-17691 (Homeputer CL Studio fur HomeMatic 4.0 Rel 160808 and earlier use
 CVE-2017-17690
 	RESERVED
 CVE-2017-17689 (The S/MIME specification allows a Cipher Block Chaining (CBC) ...)
-	- thunderbird <unfixed> (bug #898631)
-	[stretch] - thunderbird <postponed> (Wait until fixed in upstream release)
-	[jessie] - thunderbird <postponed> (Wait until fixed in upstream release)
 	- evolution <unfixed> (bug #898633; unimportant)
 	- kmail <unfixed> (bug #898634)
 	- kf5-messagelib <unfixed> (bug #899127)


=====================================
data/dsa-needed.txt
=====================================
@@ -61,6 +61,8 @@ mupdf
 --
 openjfx
 --
+openafs
+--
 openjpeg2 (luciano)
 --
 otrs2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/263431f6d9707e2b62998386a40447d71dbd5007

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/263431f6d9707e2b62998386a40447d71dbd5007
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180917/cbca0853/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list