[Git][security-tracker-team/security-tracker][master] new jupyter-notebook issue

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
cb6a9dcf by Moritz Muehlenhoff at 2019-11-02T08:32:26Z
new jupyter-notebook issue
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,9 +1,9 @@
 CVE-2019-18661 (Fastweb FASTGate 1.0.1b devices allow partial authentication bypass by ...)
-	TODO: check
+	NOT-FOR-US: Fastweb FASTGate
 CVE-2019-18660
 	RESERVED
 CVE-2019-18659 (The Wireless Emergency Alerts (WEA) protocol allows remote attackers t ...)
-	TODO: check
+	NOT-FOR-US: Wireless Emergency Alerts (WEA) protocol
 CVE-2019-18658
 	RESERVED
 CVE-2019-18657 (ClickHouse before 19.13.5.44 allows HTTP header injection via the url  ...)
@@ -23,7 +23,8 @@ CVE-2019-18651
 CVE-2019-18650
 	RESERVED
 CVE-2018-21030 (Jupyter Notebook before 5.5.0 does not use a CSP header to treat serve ...)
-	TODO: check
+	- jupyter-notebook 5.7.4-1
+	NOTE: https://github.com/jupyter/notebook/pull/3341
 CVE-2019-18649
 	RESERVED
 CVE-2019-18648



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cb6a9dcfae083a9d7a637780350d11cd91851535

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cb6a9dcfae083a9d7a637780350d11cd91851535
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191102/d4c6b26e/attachment.html>