[Git][security-tracker-team/security-tracker][master] CVE-2019-3815,systemd: Remove not-affected tag for Jessie.

Tue Mar 12 22:56:32 GMT 2019

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9dbfd0c3 by Markus Koschany at 2019-03-12T22:53:41Z
CVE-2019-3815,systemd: Remove not-affected tag for Jessie.

Jessie is affected. There is a memory leak in dispatch_message_real and we need
to backport this commit

https://salsa.debian.org/systemd-team/systemd/merge_requests/22/diffs?commit_id=d9c31850e7bfbb537c7fdc81ad9a9fc96a1fd33e

for Jessie. Verified with valgrind --leak-check=full.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13605,7 +13605,6 @@ CVE-2019-3816
 CVE-2019-3815 (A memory leak was discovered in the backport of fixes for ...)
 	- systemd <not-affected> (This only affected backports to older suites, not the version in sid)
 	[stretch] - systemd 232-25+deb9u8
-	[jessie] - systemd <not-affected> (Broken fix for CVE-2018-16864 not applied)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1666690
 	NOTE: For stable it affected DSA-4367-1 and was corrected in DSA-4367-2
 	NOTE: specifically the backport of the fix for CVE-2018-16864.



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9dbfd0c346268be36845f4f5367679a6ad338001

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9dbfd0c346268be36845f4f5367679a6ad338001
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190312/50d40303/attachment.html>
