[Git][security-tracker-team/security-tracker][master] Reference pull request fixing CVE-2018-109{8,9}/etcd

Salvatore Bonaccorso carnil at debian.org
Sat Oct 10 16:56:59 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c80fcee8 by Salvatore Bonaccorso at 2020-10-10T17:56:45+02:00
Reference pull request fixing CVE-2018-109{8,9}/etcd

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -173536,11 +173536,13 @@ CVE-2018-1099 (DNS rebinding vulnerability found in etcd 3.3.1 and earlier. An a
 	- etcd <unfixed> (low; bug #921156)
 	[buster] - etcd <no-dsa> (Minor issue)
 	NOTE: https://github.com/coreos/etcd/issues/9353
+	NOTE: https://github.com/etcd-io/etcd/pull/9372
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1552717
 CVE-2018-1098 (A cross-site request forgery flaw was found in etcd 3.3.1 and earlier. ...)
 	- etcd <unfixed> (low; bug #921156)
 	[buster] - etcd <no-dsa> (Minor issue)
 	NOTE: https://github.com/coreos/etcd/issues/9353
+	NOTE: https://github.com/etcd-io/etcd/pull/9372
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1552714
 CVE-2018-1097 (A flaw was found in foreman before 1.16.1. The issue allows users with ...)
 	- foreman <itp> (bug #663101)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c80fcee8025d4494edbd0b22571aadf0e1477cbd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c80fcee8025d4494edbd0b22571aadf0e1477cbd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201010/b4341959/attachment.html>


More information about the debian-security-tracker-commits mailing list