[Git][security-tracker-team/security-tracker][master] Update information on CVE-2018-5786
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Apr 12 05:40:12 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
00075905 by Salvatore Bonaccorso at 2022-04-12T06:37:55+02:00
Update information on CVE-2018-5786
Issue was not correctly fixed and still present upstream. Upstream issue
accordingly reopened.
Link: https://github.com/ckolivas/lrzip/issues/91#issuecomment-1095265583
Thanks: Sylvain Beucler
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -268416,7 +268416,7 @@ CVE-2017-18044 (A Command Injection issue was discovered in ContentStore/Base/CV
NOT-FOR-US: Commvault
CVE-2018-5786 (In Long Range Zip (aka lrzip) 0.631, there is an infinite loop and app ...)
{DLA-2725-1}
- - lrzip 0.631+git180517-1 (bug #888506)
+ - lrzip <unfixed> (bug #888506)
[jessie] - lrzip <no-dsa> (Minor issue)
[wheezy] - lrzip <no-dsa> (Minor issue)
NOTE: https://github.com/ckolivas/lrzip/issues/91
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/000759055f3dd2ef5f0e39f060e958d856afd19b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/000759055f3dd2ef5f0e39f060e958d856afd19b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220412/98d45fc3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list