[Git][security-tracker-team/security-tracker][master] Drop information on CVE-2018-15878 and CVE-2018-15879

Salvatore Bonaccorso carnil at debian.org
Mon Jun 24 20:19:13 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
650d203e by Salvatore Bonaccorso at 2019-06-24T19:18:46Z
Drop information on CVE-2018-15878 and CVE-2018-15879

After pointing to MITRE that CVE-2018-15878 and CVE-2018-15879 are
duplicates of CVE-2019-6978 the entry will be updated.

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -44063,18 +44063,10 @@ CVE-2018-15881 (An issue was discovered in Joomla! before 3.8.12. Inadequate che
 	NOT-FOR-US: Joomla!
 CVE-2018-15880 (An issue was discovered in Joomla! before 3.8.12. Inadequate output fi ...)
 	NOT-FOR-US: Joomla!
-CVE-2018-15879 (The GD Graphics Library (aka libgd) through 2.2.5 has a Double Free Vu ...)
-	{DLA-1651-1}
-	- libgd2 2.2.5-4.1 (low)
-	[stretch] - libgd2 2.2.4-2+deb9u3
-	NOTE: https://github.com/libgd/libgd/issues/447
-	NOTE: https://github.com/libgd/libgd/commit/ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5
-CVE-2018-15878 (The GD Graphics Library (aka libgd) through 2.2.5 has a Double Free Vu ...)
-	{DLA-1651-1}
-	- libgd2 2.2.5-4.1 (low)
-	[stretch] - libgd2 2.2.4-2+deb9u3
-	NOTE: https://github.com/libgd/libgd/issues/447
-	NOTE: https://github.com/libgd/libgd/commit/ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5
+CVE-2018-15879
+	REJECTED
+CVE-2018-15878
+	REJECTED
 CVE-2017-18345 (The Joomanager component through 2.0.0 for Joomla! has an arbitrary fi ...)
 	NOT-FOR-US: Joomla addon
 CVE-2018-16543 (In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolutio ...)


=====================================
data/DLA/list
=====================================
@@ -549,7 +549,7 @@
 	{CVE-2018-15126 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750}
 	[jessie] - libvncserver 0.9.9+dfsg2-6.1+deb8u5
 [30 Jan 2019] DLA-1651-1 libgd2 - security update
-	{CVE-2018-5711 CVE-2018-1000222 CVE-2019-6977 CVE-2019-6978 CVE-2018-15878 CVE-2018-15879}
+	{CVE-2018-5711 CVE-2018-1000222 CVE-2019-6977 CVE-2019-6978}
 	[jessie] - libgd2 2.1.0-5+deb8u12
 [30 Jan 2019] DLA-1650-1 rssh - security update
 	{CVE-2019-1000018}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/650d203e90d67cc9b4ea01b95e42eea1bd266226

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/650d203e90d67cc9b4ea01b95e42eea1bd266226
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190624/b5bcb251/attachment.html>


More information about the debian-security-tracker-commits mailing list