[Git][security-tracker-team/security-tracker][master] Add CVE-2018-2053{2,3,4}/libsolv

Salvatore Bonaccorso carnil at debian.org
Mon Jan 14 06:23:48 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5bcc825d by Salvatore Bonaccorso at 2019-01-14T06:23:05Z
Add CVE-2018-2053{2,3,4}/libsolv

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6331,11 +6331,20 @@ CVE-2018-20535 (There is a use-after-free at asm/preproc.c (function pp_getline)
 	[jessie] - nasm <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.nasm.us/show_bug.cgi?id=3392530
 CVE-2018-20534 (There is an illegal address access at src/pool.h (function ...)
-	TODO: check
+	- libsolv <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652604
+	NOTE: https://github.com/openSUSE/libsolv/pull/291
+	TODO: further check on affected versions
 CVE-2018-20533 (There is a NULL pointer dereference at ext/testcase.c (function ...)
-	TODO: check
+	- libsolv <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652599
+	NOTE: https://github.com/openSUSE/libsolv/pull/291
+	TODO: further check on affected versions
 CVE-2018-20532 (There is a NULL pointer dereference at ext/testcase.c (function ...)
-	TODO: check
+	- libsolv <unfixed>
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1652605
+	NOTE: https://github.com/openSUSE/libsolv/pull/291
+	TODO: further check on affected versions
 CVE-2018-20531
 	RESERVED
 CVE-2018-20530 (PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5bcc825dd0566c20cc69bd81a4227e87cca4b3aa

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5bcc825dd0566c20cc69bd81a4227e87cca4b3aa
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190114/ffd375ed/attachment.html>

More information about the debian-security-tracker-commits mailing list