[Git][security-tracker-team/security-tracker][master] more glusterfs commits

Moritz Muehlenhoff jmm at debian.org
Thu Sep 20 16:22:47 BST 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
96edb401 by Moritz Muehlenhoff at 2018-09-20T15:22:22Z
more glusterfs commits

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15934,7 +15934,7 @@ CVE-2018-10908 (It was found that vdsm before version 4.20.37 invokes qemu-img o
 CVE-2018-10907 (It was found that glusterfs server is vulnerable to multiple stack ...)
 	- glusterfs 4.1.4-1 (bug #909215)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1601642
-	NOTE: https://review.gluster.org/21070
+	NOTE: https://github.com/gluster/glusterfs/commit/35f86ce46240c4f9c216bbc29164ce441cfca1e7
 CVE-2018-10906 (In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is ...)
 	{DSA-4257-1 DLA-1468-1}
 	- fuse3 <itp> (bug #904216)
@@ -15946,7 +15946,7 @@ CVE-2018-10905 (CloudForms Management Engine (cfme) is vulnerable to an improper
 CVE-2018-10904 (It was found that glusterfs server does not properly sanitize file ...)
 	- glusterfs 4.1.4-1 (bug #909215)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1601298
-	NOTE: https://review.gluster.org/21072
+	NOTE: https://github.com/gluster/glusterfs/commit/9716ce88b3a1faf135a6badc02d94249898059dd
 CVE-2018-10903 (A flaw was found in python-cryptography versions between >=1.9.0 and ...)
 	- python-cryptography 2.3-1 (bug #904072)
 	[stretch] - python-cryptography <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96edb40136cae70257fb6505cfbd2f3ad9934687

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96edb40136cae70257fb6505cfbd2f3ad9934687
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180920/c01d7da9/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list