[Git][security-tracker-team/security-tracker][master] Associate CVE-2018-5383 with firmware-nonfree
Salvatore Bonaccorso
carnil at debian.org
Wed Jan 16 07:11:16 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a1549052 by Salvatore Bonaccorso at 2019-01-16T07:08:37Z
Associate CVE-2018-5383 with firmware-nonfree
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -54321,7 +54321,9 @@ CVE-2018-5385 (Navarino Infinity is prone to session fixation attacks. The serve
CVE-2018-5384 (Navarino Infinity web interface up to version 2.2 exposes an ...)
NOT-FOR-US: Navarino Infinity
CVE-2018-5383 (Bluetooth firmware or operating system software drivers in macOS ...)
- NOT-FOR-US: Qualcomm components for Android
+ - firmware-nonfree 20190114-1
+ [stretch] - firmware-nonfree <no-dsa> (non-free not supported)
+ NOTE: http://www.cs.technion.ac.il/~biham/BT/
CVE-2018-5382 (Bouncy Castle BKS version 1 keystore (BKS-V1) files use an HMAC that ...)
- bouncycastle 1.48+dfsg-2
[wheezy] - bouncycastle <ignored> (this only affects the integrity verification and not the content of the BKS keystore)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a154905262930380a16bfd48c001e404b1526c65
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a154905262930380a16bfd48c001e404b1526c65
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190116/72086ef3/attachment.html>
More information about the debian-security-tracker-commits
mailing list