[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1320/libthrift-java via unstable
Salvatore Bonaccorso
carnil at debian.org
Wed Feb 6 19:49:52 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ce8c8b89 by Salvatore Bonaccorso at 2019-02-06T19:48:55Z
Add fixed version for CVE-2018-1320/libthrift-java via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -69016,7 +69016,7 @@ CVE-2018-1322 (An administrator with user search entitlements in Apache Syncope
CVE-2018-1321 (An administrator with report and template entitlements in Apache ...)
NOT-FOR-US: Apache Syncope
CVE-2018-1320 (Apache Thrift Java client library versions 0.5.0 through 0.11.0 can ...)
- - libthrift-java <unfixed> (bug #918736)
+ - libthrift-java 0.9.1-2.1 (bug #918736)
NOTE: https://issues.apache.org/jira/browse/THRIFT-4506
NOTE: https://github.com/apache/thrift/commit/d973409661f820d80d72c0034d06a12348c8705e
CVE-2018-1319 (In Apache Allura prior to 1.8.1, attackers may craft URLs that cause ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ce8c8b8931b72fe4a442d0ea9ad69fef3980e07d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ce8c8b8931b72fe4a442d0ea9ad69fef3980e07d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190206/c0700d88/attachment.html>
More information about the debian-security-tracker-commits
mailing list