[Git][security-tracker-team/security-tracker][master] Sync status for some CVEs for jessie with kernel-sec

Salvatore Bonaccorso carnil at debian.org
Fri Aug 9 21:41:27 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
eb99a770 by Salvatore Bonaccorso at 2019-08-09T20:40:48Z
Sync status for some CVEs for jessie with kernel-sec

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -339,6 +339,7 @@ CVE-2019-14662 (Brandy 1.20.1 has a stack-based buffer overflow in fileio_openou
 CVE-2018-20961 (In the Linux kernel before 4.16.4, a double free vulnerability in the  ...)
 	- linux 4.16.5-1
 	[stretch] - linux 4.9.107-1
+	[jessie] - linux <not-affected> (Vulnerability introduced later)
 	NOTE: Fixed by: https://git.kernel.org/linus/7fafcfdf6377b18b2a726ea554d6e593ba44349f
 CVE-2018-20960 (Nespresso Prodigio devices lack Bluetooth connection security. ...)
 	NOT-FOR-US: Nespresso Prodigio
@@ -9976,6 +9977,7 @@ CVE-2019-11488 (Incorrect Access Control in the Account Access / Password Reset
 	NOT-FOR-US: SimplyBook.me Enterprise
 CVE-2019-11487 (The Linux kernel before 5.1-rc5 allows page->_refcount reference co ...)
 	- linux 4.19.37-1
+	[jessie] - linux <ignored> (Minor issue and high risk of regression)
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1752
 	NOTE: https://lwn.net/Articles/786044/
 CVE-2019-11486 (The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in t ...)
@@ -65831,6 +65833,7 @@ CVE-2018-10323 (The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap
 	NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199423
 CVE-2018-10322 (The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the ...)
 	- linux 4.16.5-1
+	[jessie] - linux <ignored> (dinode verifier not implemented)
 	[wheezy] - linux <ignored> (dinode verifier not implemented)
 	[jessie] - linux-4.9 <unfixed>
 	NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=199377



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eb99a770197854f393df15d18217ace69d86bf33

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/eb99a770197854f393df15d18217ace69d86bf33
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190809/b460d924/attachment.html>

More information about the debian-security-tracker-commits mailing list