[Git][security-tracker-team/security-tracker][master] Add reference for CVE-2018-12029/passenger
Salvatore Bonaccorso
carnil at debian.org
Sat Mar 16 08:21:57 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fef205e9 by Salvatore Bonaccorso at 2019-03-16T08:21:26Z
Add reference for CVE-2018-12029/passenger
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -44621,6 +44621,7 @@ CVE-2018-12029 (A race condition in the nginx module in Phusion Passenger 3.x th
- ruby-passenger <removed>
NOTE: https://blog.phusion.nl/2018/06/12/passenger-5-3-2-various-security-fixes/
NOTE: https://github.com/phusion/passenger/commit/207870f5b7f5cc240587ab0977d6046782ae1d86
+ NOTE: https://pulsesecurity.co.nz/advisories/phusion-passenger-priv-esc
CVE-2018-12028 (An Incorrect Access Control vulnerability in SpawningKit in Phusion ...)
- passenger <not-affected> (Introduced in 5.3.0 with major refactoring of SpawningKit)
- ruby-passenger <not-affected> (Introduced in 5.3.0 with major refactoring of SpawningKit)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fef205e9fb44448104ac66b45a0ce15018e91608
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fef205e9fb44448104ac66b45a0ce15018e91608
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190316/84dbdb74/attachment.html>
More information about the debian-security-tracker-commits
mailing list