[Git][security-tracker-team/security-tracker][master] ncurses: clarification progress

[Sylvain Beucler]

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
af80edf3 by Sylvain Beucler at 2019-04-15T13:36:50Z
ncurses: clarification progress

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -30295,6 +30295,7 @@ CVE-2018-19217 (In ncurses 6.1, there is a NULL pointer dereference at the funct
 	- ncurses <undetermined>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1643753
 	NOTE: nobody was able to reproduce it for now
+	NOTE: https://lists.gnu.org/archive/html/bug-ncurses/2019-04/msg00005.html
 CVE-2018-19216 (Netwide Assembler (NASM) before 2.13.02 has a use-after-free in detoke ...)
 	- nasm 2.13.02-0.1
 	[stretch] - nasm <no-dsa> (Minor issue)
@@ -30321,6 +30322,7 @@ CVE-2018-19212 (In libwebm through 2018-10-03, there is an abort caused by libwe
 	NOTE: Chromium and qtwebengine bundle the library, but not a security issue there
 CVE-2018-19211 (In ncurses 6.1, there is a NULL pointer dereference at function _nc_pa ...)
 	NOTE: Duplicate of CVE-2018-10754
+	NOTE: Mitre request 673089 - for now they "are required to maintain these as separate CVEs according to the CNA Rules"
 CVE-2018-19210 (In LibTIFF 4.0.9, there is a NULL pointer dereference in the TIFFWrite ...)
 	{DLA-1680-1}
 	- tiff 4.0.10-4 (bug #913675)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/af80edf39153c8fb44be591f7fae77d019daf371

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/af80edf39153c8fb44be591f7fae77d019daf371
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190415/ffa98b9c/attachment.html>