[Git][security-tracker-team/security-tracker][master] rssh, libreoffice DSAs

Sat Feb 2 18:19:05 GMT 2019

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4b4f1c16 by Moritz Muehlenhoff at 2019-02-02T18:18:39Z
rssh, libreoffice DSAs

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2003,7 +2003,8 @@ CVE-2018-20723 (A cross-site scripting (XSS) vulnerability exists in ...)
 CVE-2018-20722
 	RESERVED
 CVE-2018-20721 (URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bounds ...)
-	- uriparser 0.9.1-1
+	- uriparser 0.9.1-1 (low)
+	[stretch] - uriparser <no-dsa> (Minor issue)
 	NOTE: https://github.com/uriparser/uriparser/commit/cef25028de5ff872c2e1f0a6c562eb3ea9ecbce4
 CVE-2015-9280 (MailEnable before 8.60 allows XXE via an XML document in the ...)
 	NOT-FOR-US: MailEnable


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,9 @@
+[02 Feb 2019] DSA-4382-1 rssh - security update
+	{CVE-2019-3463 CVE-2019-3464}
+	[stretch] - rssh 2.3.4-5+deb9u2
+[02 Feb 2019] DSA-4381-1 libreoffice - security update
+	{CVE-2018-16858}
+	[stretch] - libreoffice 1:5.2.7-1+deb9u5
 [01 Feb 2019] DSA-4380-1 golang-1.8 - security update
 	{CVE-2018-6574 CVE-2018-7187 CVE-2019-6486}
 	[stretch] - golang-1.8 1.8.1-1+deb9u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4b4f1c1647cc552ae3181aa2821c1bd23da5aaf9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4b4f1c1647cc552ae3181aa2821c1bd23da5aaf9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190202/aa92ede0/attachment.html>
