[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2018-20685/openssh
Salvatore Bonaccorso
carnil at debian.org
Sun Jan 13 14:02:08 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e8b2f69f by Salvatore Bonaccorso at 2019-01-13T14:01:19Z
Add fixed version for CVE-2018-20685/openssh
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1051,7 +1051,7 @@ CVE-2019-5755
CVE-2019-5754
RESERVED
CVE-2018-20685 (In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to ...)
- - openssh <unfixed> (bug #919101)
+ - openssh 1:7.9p1-5 (bug #919101)
NOTE: https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2
NOTE: https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt
CVE-2018-20682 (Fork CMS 5.0.6 allows stored XSS via the private/en/settings ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e8b2f69f81df4d1a564d7d307ab11b8aedab1003
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e8b2f69f81df4d1a564d7d307ab11b8aedab1003
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190113/ccfe6c57/attachment.html>
More information about the debian-security-tracker-commits
mailing list