[Git][security-tracker-team/security-tracker][master] Drop information on CVE-2018-15878 and CVE-2018-15879
Salvatore Bonaccorso
carnil at debian.org
Mon Jun 24 20:19:13 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
650d203e by Salvatore Bonaccorso at 2019-06-24T19:18:46Z
Drop information on CVE-2018-15878 and CVE-2018-15879
After pointing to MITRE that CVE-2018-15878 and CVE-2018-15879 are
duplicates of CVE-2019-6978 the entry will be updated.
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44063,18 +44063,10 @@ CVE-2018-15881 (An issue was discovered in Joomla! before 3.8.12. Inadequate che
NOT-FOR-US: Joomla!
CVE-2018-15880 (An issue was discovered in Joomla! before 3.8.12. Inadequate output fi ...)
NOT-FOR-US: Joomla!
-CVE-2018-15879 (The GD Graphics Library (aka libgd) through 2.2.5 has a Double Free Vu ...)
- {DLA-1651-1}
- - libgd2 2.2.5-4.1 (low)
- [stretch] - libgd2 2.2.4-2+deb9u3
- NOTE: https://github.com/libgd/libgd/issues/447
- NOTE: https://github.com/libgd/libgd/commit/ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5
-CVE-2018-15878 (The GD Graphics Library (aka libgd) through 2.2.5 has a Double Free Vu ...)
- {DLA-1651-1}
- - libgd2 2.2.5-4.1 (low)
- [stretch] - libgd2 2.2.4-2+deb9u3
- NOTE: https://github.com/libgd/libgd/issues/447
- NOTE: https://github.com/libgd/libgd/commit/ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5
+CVE-2018-15879
+ REJECTED
+CVE-2018-15878
+ REJECTED
CVE-2017-18345 (The Joomanager component through 2.0.0 for Joomla! has an arbitrary fi ...)
NOT-FOR-US: Joomla addon
CVE-2018-16543 (In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolutio ...)
=====================================
data/DLA/list
=====================================
@@ -549,7 +549,7 @@
{CVE-2018-15126 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750}
[jessie] - libvncserver 0.9.9+dfsg2-6.1+deb8u5
[30 Jan 2019] DLA-1651-1 libgd2 - security update
- {CVE-2018-5711 CVE-2018-1000222 CVE-2019-6977 CVE-2019-6978 CVE-2018-15878 CVE-2018-15879}
+ {CVE-2018-5711 CVE-2018-1000222 CVE-2019-6977 CVE-2019-6978}
[jessie] - libgd2 2.1.0-5+deb8u12
[30 Jan 2019] DLA-1650-1 rssh - security update
{CVE-2019-1000018}
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/650d203e90d67cc9b4ea01b95e42eea1bd266226
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/650d203e90d67cc9b4ea01b95e42eea1bd266226
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190624/b5bcb251/attachment.html>
More information about the debian-security-tracker-commits
mailing list