[Git][security-tracker-team/security-tracker][master] bind9 n/a
Moritz Muehlenhoff
jmm at debian.org
Thu Jun 20 14:41:01 BST 2019
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ea6a3b75 by Moritz Muehlenhoff at 2019-06-20T13:40:20Z
bind9 n/a
libsass triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -16886,6 +16886,8 @@ CVE-2019-6472
CVE-2019-6471 [A race condition when discarding malformed packets can cause BIND to exit with an assertion failure]
RESERVED
- bind9 <unfixed> (bug #930746)
+ [stretch] - bind9 <not-affected> (Only affects 9.11 and later)
+ [jessie] - bind9 <not-affected> (Only affects 9.11 and later)
NOTE: https://kb.isc.org/v1/docs/cve-2019-6471
CVE-2019-6470 [DHCPv6 server crashes regularly]
RESERVED
@@ -55028,17 +55030,22 @@ CVE-2018-11696 (An issue was discovered in LibSass through 3.5.4. A NULL pointer
NOTE: https://github.com/sass/libsass/issues/2665
NOTE: https://github.com/sass/libsass/commit/38f4c3699d06b64128bebc7cf1e8b3125be74dc4
CVE-2018-11695 (An issue was discovered in LibSass through 3.5.2. A NULL pointer deref ...)
- - libsass <unfixed>
+ - libsass 3.5.5-1 (low)
[stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2664
+ NOTE: https://github.com/sass/libsass/commit/0bc35e3d26922229d5a3e3308860cf0fcee5d1cf
CVE-2018-11694 (An issue was discovered in LibSass through 3.5.4. A NULL pointer deref ...)
- - libsass <unfixed>
+ - libsass <unfixed> (low)
+ [buster] - libsass <no-dsa> (Minor issue)
[stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2663
+ NOTE: https://github.com/glebm/libsass/commit/e5964a7df9bdb36f2944e7289812f1057aad2c5d
+ NOTE: https://github.com/sass/libsass/commit/c93f0581c6b7794d8c1d5637c5c4dabd591b1d57
CVE-2018-11693 (An issue was discovered in LibSass through 3.5.4. An out-of-bounds rea ...)
- - libsass <unfixed>
+ - libsass 3.5.5-1 (low)
[stretch] - libsass <no-dsa> (Minor issue)
NOTE: https://github.com/sass/libsass/issues/2661
+ NOTE: https://github.com/xzyfer/libsass/commit/af0e12cdf09d43dbd1fc11e3f64b244277cc1a1e
CVE-2018-11692 (** DISPUTED ** An issue was discovered on Canon LBP6650, LBP3370, LBP3 ...)
NOT-FOR-US: Canon devices
CVE-2018-11691 (Emerson VE6046 09.0.12 devices have hardcoded admin credentials allowi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea6a3b751d30d29e66c8e8e60f41cb2ef2096d38
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea6a3b751d30d29e66c8e8e60f41cb2ef2096d38
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190620/898878fd/attachment.html>
More information about the debian-security-tracker-commits
mailing list