[Git][security-tracker-team/security-tracker][master] Review entries and regroup according to likely inclusion in point release

Salvatore Bonaccorso carnil at debian.org
Wed Feb 13 17:09:18 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fa9d1f63 by Salvatore Bonaccorso at 2019-02-13T17:08:45Z
Review entries and regroup according to likely inclusion in point release

- - - - -


1 changed file:

- data/next-point-update.txt


Changes:

=====================================
data/next-point-update.txt
=====================================
@@ -1,37 +1,5 @@
-CVE-2017-12424
-	[stretch] - shadow 1:4.4-4.1+deb9u1
-CVE-2015-9261 [busybox: pointer misuse unziping files]
-	[stretch] - busybox 1:1.22.0-19+deb9u1
-CVE-2016-2148
-	[stretch] - busybox 1:1.22.0-19+deb9u1
-CVE-2016-2147
-	[stretch] - busybox 1:1.22.0-19+deb9u1
-CVE-2011-5325
-	[stretch] - busybox 1:1.22.0-19+deb9u1
-CVE-2017-15873
-	[stretch] - busybox 1:1.22.0-19+deb9u1
-CVE-2017-16544
-	[stretch] - busybox 1:1.22.0-19+deb9u1
-CVE-2017-17840
-	[stretch] - open-iscsi 2.0.874-3~deb9u2
-CVE-2017-7458
-	[stretch] - ntopng 2.4+dfsg1-3+deb9u1
-CVE-2017-7459
-	[stretch] - ntopng 2.4+dfsg1-3+deb9u1
 CVE-2017-16612
 	[stretch] - wayland 1.12.0-1+deb9u1
-CVE-2017-14804
-	[stretch] - obs-build 20160921-1+deb9u1
-CVE-2017-9527
-	[stretch] - mruby 1.2.0+20161228+git30d5424a-1+deb9u1
-CVE-2018-14779
-	[stretch] - yubico-piv-tool 1.4.2-2+deb9u1
-CVE-2018-14780
-	[stretch] - yubico-piv-tool 1.4.2-2+deb9u1
-CVE-2018-18718
-	[stretch] - gthumb 3:3.4.4.1-5+deb9u1
-CVE-2018-16336
-	[stretch] - exiv2 0.25-3.1+deb9u2
 CVE-2018-13053
 	[stretch] - linux 4.9.135-1
 CVE-2018-17972
@@ -86,8 +54,6 @@ CVE-2011-2767
 	[stretch] - libapache2-mod-perl2 2.0.10-2+deb9u1
 CVE-2018-16471
 	[stretch] - ruby-rack 1.6.4-4+deb9u1
-CVE-2014-10077
-	[stretch] - ruby-i18n 0.7.0-2+deb9u1
 CVE-2018-1046
 	[stretch] - pdns 4.0.3-1+deb9u3
 CVE-2018-10851
@@ -132,8 +98,6 @@ CVE-2018-20676
 	[stretch] - twitter-bootstrap3 3.3.7+dfsg-3+deb9u1
 CVE-2018-20677
 	[stretch] - twitter-bootstrap3 3.3.7+dfsg-3+deb9u1
-CVE-2018-9240
-	[stretch] - ncmpc 0.25-0.1+deb9u1
 CVE-2018-20450
 	[stretch] - r-cran-readxl 0.1.1-1+deb9u2
 CVE-2018-20452
@@ -150,5 +114,41 @@ CVE-2018-12558
 	[stretch] - libemail-address-perl 1.908-1+deb9u1
 CVE-2018-17942
 	[stretch] - gnulib 20140202+stable-2+deb9u1
+CVE-2017-12424
+	[stretch] - shadow 1:4.4-4.1+deb9u1
+CVE-2015-9261 [busybox: pointer misuse unziping files]
+	[stretch] - busybox 1:1.22.0-19+deb9u1
+CVE-2016-2148
+	[stretch] - busybox 1:1.22.0-19+deb9u1
+CVE-2016-2147
+	[stretch] - busybox 1:1.22.0-19+deb9u1
+CVE-2011-5325
+	[stretch] - busybox 1:1.22.0-19+deb9u1
+CVE-2017-15873
+	[stretch] - busybox 1:1.22.0-19+deb9u1
+CVE-2017-16544
+	[stretch] - busybox 1:1.22.0-19+deb9u1
+CVE-2017-17840
+	[stretch] - open-iscsi 2.0.874-3~deb9u2
+CVE-2017-7458
+	[stretch] - ntopng 2.4+dfsg1-3+deb9u1
+CVE-2017-7459
+	[stretch] - ntopng 2.4+dfsg1-3+deb9u1
+CVE-2017-14804
+	[stretch] - obs-build 20160921-1+deb9u1
+CVE-2017-9527
+	[stretch] - mruby 1.2.0+20161228+git30d5424a-1+deb9u1
+CVE-2018-14779
+	[stretch] - yubico-piv-tool 1.4.2-2+deb9u1
+CVE-2018-14780
+	[stretch] - yubico-piv-tool 1.4.2-2+deb9u1
+CVE-2018-18718
+	[stretch] - gthumb 3:3.4.4.1-5+deb9u1
+CVE-2018-16336
+	[stretch] - exiv2 0.25-3.1+deb9u2
+CVE-2014-10077
+	[stretch] - ruby-i18n 0.7.0-2+deb9u1
+CVE-2018-9240
+	[stretch] - ncmpc 0.25-0.1+deb9u1
 CVE-2018-1000035
 	[stretch] - unzip 6.0-21+deb9u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa9d1f63f3b57895c586b5352d7b3add0edd4f52

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa9d1f63f3b57895c586b5352d7b3add0edd4f52
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190213/5ced8880/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list