[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2018-3831/elasticsearch

Tue Sep 25 07:13:13 BST 2018

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6c10f511 by Salvatore Bonaccorso at 2018-09-25T06:11:02Z
Add CVE-2018-3831/elasticsearch

- - - - -
0b42d132 by Salvatore Bonaccorso at 2018-09-25T06:12:53Z
Add CVE-2018-3830/kibana

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -35833,9 +35833,9 @@ CVE-2018-3833 (An exploitable firmware downgrade vulnerability exists in Insteon
 CVE-2018-3832 (An exploitable firmware update vulnerability exists in Insteon Hub ...)
 	NOT-FOR-US: Insteon Hub
 CVE-2018-3831 (Elasticsearch Alerting and Monitoring in versions before 6.4.1 or ...)
-	TODO: check
+	- elasticsearch <removed>
 CVE-2018-3830 (Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting (XSS) ...)
-	TODO: check
+	- kibana <itp> (bug #700337)
 CVE-2018-3829 (In Elastic Cloud Enterprise (ECE) versions prior to 1.1.4 it was ...)
 	TODO: check
 CVE-2018-3828 (Elastic Cloud Enterprise (ECE) versions prior to 1.1.4 contain an ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/a944d0d787c86d5786c8bb66006ccb3debf6b39e...0b42d1320dce165e19dfa5496036b74778826f62

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/a944d0d787c86d5786c8bb66006ccb3debf6b39e...0b42d1320dce165e19dfa5496036b74778826f62
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180925/f3f3b4ec/attachment.html>
