[Git][security-tracker-team/security-tracker][master] more glusterfs commits
Moritz Muehlenhoff
jmm at debian.org
Thu Sep 20 16:22:47 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
96edb401 by Moritz Muehlenhoff at 2018-09-20T15:22:22Z
more glusterfs commits
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15934,7 +15934,7 @@ CVE-2018-10908 (It was found that vdsm before version 4.20.37 invokes qemu-img o
CVE-2018-10907 (It was found that glusterfs server is vulnerable to multiple stack ...)
- glusterfs 4.1.4-1 (bug #909215)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1601642
- NOTE: https://review.gluster.org/21070
+ NOTE: https://github.com/gluster/glusterfs/commit/35f86ce46240c4f9c216bbc29164ce441cfca1e7
CVE-2018-10906 (In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is ...)
{DSA-4257-1 DLA-1468-1}
- fuse3 <itp> (bug #904216)
@@ -15946,7 +15946,7 @@ CVE-2018-10905 (CloudForms Management Engine (cfme) is vulnerable to an improper
CVE-2018-10904 (It was found that glusterfs server does not properly sanitize file ...)
- glusterfs 4.1.4-1 (bug #909215)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1601298
- NOTE: https://review.gluster.org/21072
+ NOTE: https://github.com/gluster/glusterfs/commit/9716ce88b3a1faf135a6badc02d94249898059dd
CVE-2018-10903 (A flaw was found in python-cryptography versions between >=1.9.0 and ...)
- python-cryptography 2.3-1 (bug #904072)
[stretch] - python-cryptography <not-affected> (Vulnerable code introduced later)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96edb40136cae70257fb6505cfbd2f3ad9934687
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96edb40136cae70257fb6505cfbd2f3ad9934687
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180920/c01d7da9/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list