[Git][security-tracker-team/security-tracker][master] Update severity for CVE-2018-6542/zziplib

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f2a965a7 by Salvatore Bonaccorso at 2019-03-03T12:32:00Z
Update severity for CVE-2018-6542/zziplib

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -58841,12 +58841,10 @@ CVE-2018-6543 (In GNU Binutils 2.30, there's an integer overflow in the function
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22769
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=f2023ce7e8d70b0155cc6206c901e185260918f0
 CVE-2018-6542 (In ZZIPlib 0.13.67, there is a bus error (when handling a ...)
-	- zziplib <unfixed>
-	[stretch] - zziplib <no-dsa> (Minor issue)
-	[jessie] - zziplib <no-dsa> (Minor issue)
-	[wheezy] - zziplib <ignored> (Minor issue)
+	- zziplib <unfixed> (unimportant)
 	NOTE: https://github.com/gdraheim/zziplib/issues/17
 	NOTE: https://github.com/gdraheim/zziplib/commit/931f962ddfec0e00d6f486df2c56d9857b55944e
+	NOTE: Negligible impact and unzzipcat utility not installed into binary packages
 CVE-2018-6541 (In ZZIPlib 0.13.67, there is a bus error caused by loading of a ...)
 	- zziplib <unfixed> (bug #889089)
 	[stretch] - zziplib <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2a965a7fa06898929b76d590ab01b1e7364cd8a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f2a965a7fa06898929b76d590ab01b1e7364cd8a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190303/5c1a6b98/attachment-0001.html>