[Git][security-tracker-team/security-tracker][master] Unmark CVE-2018-20839/systemd

Sat May 25 08:40:44 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
224d75ff by Salvatore Bonaccorso at 2019-05-25T07:40:29Z
Unmark CVE-2018-20839/systemd

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -424,12 +424,13 @@ CVE-2019-12151
 CVE-2019-12150 (Karamasoft UltimateEditor 1 does not ensure that an uploaded file is a ...)
 	TODO: check
 CVE-2018-20839 (systemd 242 changes the VT1 mode upon a logout, which allows attackers ...)
-	- systemd 241-4 (bug #929116)
+	- systemd <unfixed> (bug #929116)
 	[stretch] - systemd <no-dsa> (Minor issue)
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1803993
 	NOTE: https://github.com/systemd/systemd/commit/9725f1a10f80f5e0ae7d9b60547458622aeb322f
 	NOTE: https://github.com/systemd/systemd/pull/12378
-	NOTE: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929229 (regression)
+	NOTE: The fix introduced a regression, cf. https://bugs.debian.org/929229
+	NOTE: Issue was originally fixed for unstable in 241-4 but was reverted in 241-5
 CVE-2019-12149
 	RESERVED
 CVE-2019-12148



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/224d75ff32b62e31b930bf20fbe9ac96088c10e7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/224d75ff32b62e31b930bf20fbe9ac96088c10e7
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190525/188b16d6/attachment-0001.html>
