[Git][security-tracker-team/security-tracker][master] 3 commits: mark vlc as EOL in Jessie
Thorsten Alteholz
alteholz at debian.org
Thu Aug 22 14:18:29 BST 2019
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bc6f4160 by Thorsten Alteholz at 2019-08-22T13:03:58Z
mark vlc as EOL in Jessie
- - - - -
db2474d0 by Thorsten Alteholz at 2019-08-22T13:06:42Z
mark CVE-2014-10375 as no-dsa for Jessie
- - - - -
1d4d1c7c by Thorsten Alteholz at 2019-08-22T13:08:01Z
mark CVE-2019-13990 as no-dsa for Jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1082,6 +1082,7 @@ CVE-2014-10375 (handle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles
- libexosip2 <unfixed> (bug #934766)
[buster] - libexosip2 <no-dsa> (Minor issue)
[stretch] - libexosip2 <no-dsa> (Minor issue)
+ [jessie] - libexosip2 <no-dsa> (Minor issue)
NOTE: http://git.savannah.nongnu.org/cgit/exosip.git/commit/?id=2549e421c14aff886629b8482c14af800f411070
CVE-2013-7476 (The simple-fields plugin before 1.2 for WordPress has CSRF in the admi ...)
NOT-FOR-US: simple-fields plugin for WordPress
@@ -1209,6 +1210,7 @@ CVE-2019-14970
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14969 (Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\N ...)
NOT-FOR-US: Netwrix Auditor
@@ -1742,16 +1744,19 @@ CVE-2019-14778
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14777
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14776
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14775
RESERVED
@@ -2329,16 +2334,19 @@ CVE-2019-14535
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14534
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14533
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14532 (An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off ...)
- sleuthkit <unfixed> (unimportant)
@@ -2431,6 +2439,7 @@ CVE-2019-14498
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14497 (ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTr ...)
- milkytracker <unfixed> (bug #933964)
@@ -3171,11 +3180,13 @@ CVE-2019-14438
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14437
RESERVED
{DSA-4504-1}
- vlc 3.0.8-1
+ [jessie] - vlc <end-of-life> (https://lists.debian.org/debian-security-announce/2018/msg00130.html)
NOTE: https://www.videolan.org/security/sb-vlc308.html
CVE-2019-14436
RESERVED
@@ -4321,6 +4332,7 @@ CVE-2019-13990 (initDocumentParser in xml/XMLSchedulingDataProcessor.java in Ter
- libquartz-java <unfixed> (bug #933169)
[buster] - libquartz-java <no-dsa> (Minor issue)
[stretch] - libquartz-java <no-dsa> (Minor issue)
+ [jessie] - libquartz-java <no-dsa> (Minor issue)
- libquartz2-java <unfixed> (bug #933170)
[buster] - libquartz2-java <no-dsa> (Minor issue)
[stretch] - libquartz2-java <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/fc993a944ff22cd5f642189e04a6e975bce0b14e...1d4d1c7cab819722e849707b643bc1d1a59d04f1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/fc993a944ff22cd5f642189e04a6e975bce0b14e...1d4d1c7cab819722e849707b643bc1d1a59d04f1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190822/6f52e32f/attachment.html>
More information about the debian-security-tracker-commits
mailing list