[Git][security-tracker-team/security-tracker][master] CVE-2018-17183/ghostscript assigned

Salvatore Bonaccorso carnil at debian.org
Wed Sep 19 20:09:08 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7d7ff487 by Salvatore Bonaccorso at 2018-09-19T19:08:34Z
CVE-2018-17183/ghostscript assigned

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -195,9 +195,9 @@ CVE-2018-17096 (The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli
 	[stretch] - soundtouch <no-dsa> (Minor issue)
 	[jessie] - soundtouch <ignored> (Minor issue)
 	NOTE: https://gitlab.com/soundtouch/soundtouch/issues/14
-CVE-2018-XXXX [gs 699708: 'Hide' non-replaceable error handlers for SAFER]
+CVE-2018-17183 [gs 699708: 'Hide' non-replaceable error handlers for SAFER]
 	- ghostscript 9.25~dfsg-1
-	[stretch] - ghostscript 9.20~dfsg-3.2+deb9u5
+	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699708
 	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=fb713b3818b52d8a6cf62c951eba2e1795ff9624
 CVE-2018-17095 (An issue has been discovered in mpruett Audio File Library (aka ...)
 	- audiofile <unfixed>


=====================================
data/DSA/list
=====================================
@@ -10,7 +10,7 @@
 	{CVE-2018-3639 CVE-2018-3640}
 	[stretch] - intel-microcode 3.20180807a.1~deb9u1
 [16 Sep 2018] DSA-4294-1 ghostscript - security update
-	{CVE-2018-16509 CVE-2018-16802}
+	{CVE-2018-16509 CVE-2018-16802 CVE-2018-17183}
 	[stretch] - ghostscript 9.20~dfsg-3.2+deb9u5
 [14 Sep 2018] DSA-4293-1 discount - security update
 	{CVE-2018-11468 CVE-2018-11503 CVE-2018-11504 CVE-2018-12495}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7d7ff4871232f5de26bc7af8b613f77f73a2a3b6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7d7ff4871232f5de26bc7af8b613f77f73a2a3b6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180919/1362031c/attachment.html>

More information about the debian-security-tracker-commits mailing list