[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-1935{1,2}/jupyter-notebook
Salvatore Bonaccorso
carnil at debian.org
Mon Feb 18 16:30:33 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e45d5769 by Salvatore Bonaccorso at 2019-02-18T16:29:50Z
Add fixed version for CVE-2018-1935{1,2}/jupyter-notebook
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21621,10 +21621,10 @@ CVE-2018-19354
CVE-2018-19353 (The ansilove_ansi function in loaders/ansi.c in libansilove 1.0.0 ...)
NOT-FOR-US: libansilove
CVE-2018-19352 (Jupyter Notebook before 5.7.2 allows XSS via a crafted directory name ...)
- - jupyter-notebook <unfixed> (bug #917408)
+ - jupyter-notebook 5.7.4-1 (bug #917408)
NOTE: https://github.com/jupyter/notebook/commit/288b73e1edbf527740e273fcc69b889460871648
CVE-2018-19351 (Jupyter Notebook before 5.7.1 allows XSS via an untrusted notebook ...)
- - jupyter-notebook <unfixed> (bug #917409)
+ - jupyter-notebook 5.7.4-1 (bug #917409)
NOTE: https://github.com/jupyter/notebook/commit/107a89fce5f413fb5728c1c5d2c7788e1fb17491
CVE-2008-7320 (** DISPUTED ** GNOME Seahorse through 3.30 allows physically proximate ...)
- seahorse <unfixed> (unimportant)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e45d576925616dfb3ac9c9f70b1ea27c8e3f4b2f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e45d576925616dfb3ac9c9f70b1ea27c8e3f4b2f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190218/4d4b11d3/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list