[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1935{1,2}/jupyter-notebook

Salvatore Bonaccorso carnil at debian.org
Mon Feb 18 16:30:33 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e45d5769 by Salvatore Bonaccorso at 2019-02-18T16:29:50Z
Add fixed version for CVE-2018-1935{1,2}/jupyter-notebook

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21621,10 +21621,10 @@ CVE-2018-19354
 CVE-2018-19353 (The ansilove_ansi function in loaders/ansi.c in libansilove 1.0.0 ...)
 	NOT-FOR-US: libansilove
 CVE-2018-19352 (Jupyter Notebook before 5.7.2 allows XSS via a crafted directory name ...)
-	- jupyter-notebook <unfixed> (bug #917408)
+	- jupyter-notebook 5.7.4-1 (bug #917408)
 	NOTE: https://github.com/jupyter/notebook/commit/288b73e1edbf527740e273fcc69b889460871648
 CVE-2018-19351 (Jupyter Notebook before 5.7.1 allows XSS via an untrusted notebook ...)
-	- jupyter-notebook <unfixed> (bug #917409)
+	- jupyter-notebook 5.7.4-1 (bug #917409)
 	NOTE: https://github.com/jupyter/notebook/commit/107a89fce5f413fb5728c1c5d2c7788e1fb17491
 CVE-2008-7320 (** DISPUTED ** GNOME Seahorse through 3.30 allows physically proximate ...)
 	- seahorse <unfixed> (unimportant)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e45d576925616dfb3ac9c9f70b1ea27c8e3f4b2f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e45d576925616dfb3ac9c9f70b1ea27c8e3f4b2f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190218/4d4b11d3/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list