[Git][security-tracker-team/security-tracker][master] Add CVE-2018-19856/gitlab

Tue Mar 26 21:16:22 GMT 2019

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
21b917c6 by Salvatore Bonaccorso at 2019-03-26T21:15:54Z
Add CVE-2018-19856/gitlab

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22639,7 +22639,9 @@ CVE-2018-19857 (The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media pla
 	NOTE: https://dyntopia.com/advisories/013-vlc
 	NOTE: https://git.videolan.org/?p=vlc.git;a=commit;h=0cc5ea748ee5ff7705dde61ab15dff8f58be39d0
 CVE-2018-19856 (GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before  ...)
-	TODO: check
+	- gitlab 11.5.4+dfsg-1
+	NOTE: https://about.gitlab.com/2018/12/06/critical-security-release-gitlab-11-dot-5-dot-3-released/
+	NOTE: https://gitlab.com/gitlab-org/gitlab-ce/issues/54857
 CVE-2018-19855
 	RESERVED
 CVE-2018-19854 (An issue was discovered in the Linux kernel before 4.19.3. crypto_repo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/21b917c6492e37aa7bb28b30c36f4b3009028d7b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/21b917c6492e37aa7bb28b30c36f4b3009028d7b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190326/9f534c96/attachment.html>
