[Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2018-1279/rabbitmq-server

Salvatore Bonaccorso carnil at debian.org
Sun Mar 17 12:29:21 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a0702db1 by Salvatore Bonaccorso at 2019-03-17T12:28:08Z
Add Debian bug reference for CVE-2018-1279/rabbitmq-server

- - - - -
7a76ed37 by Salvatore Bonaccorso at 2019-03-17T12:28:52Z
CVE-2018-1279: fix typo in notes

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -75414,12 +75414,12 @@ CVE-2017-17448 (net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4
 CVE-2018-1280 (Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains ...)
 	NOT-FOR-US: Pivotal
 CVE-2018-1279 (Pivotal RabbitMQ for PCF, all versions, uses a deterministically ...)
-	- rabbitmq-server <unfixed>
+	- rabbitmq-server <unfixed> (bug #924768)
 	[stretch] - rabbitmq-server <no-dsa> (Minor issue)
 	[jessie] - rabbitmq-server <no-dsa> (Minor issue)
 	NOTE: https://pivotal.io/security/cve-2018-1279
 	NOTE: Underlying issue is the use of deterministically generated cookie.
-	NOTE: Issue can bemitigated by restricting network access from untrusted sources.
+	NOTE: Issue can be mitigated by restricting network access from untrusted sources.
 CVE-2018-1278 (Apps Manager included in Pivotal Application Service, versions 1.12.x ...)
 	NOT-FOR-US: Pivotal
 CVE-2018-1277 (Cloud Foundry Garden-runC, versions prior to 1.13.0, does not ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/b244e304b8d2dc4414b91de12e19949cf19aa256...7a76ed3765a3b975eba5f0a1845b0621c7e6afad

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/b244e304b8d2dc4414b91de12e19949cf19aa256...7a76ed3765a3b975eba5f0a1845b0621c7e6afad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190317/9b48cc68/attachment.html>

More information about the debian-security-tracker-commits mailing list