[Git][security-tracker-team/security-tracker][master] CVE-2018-10911/bluez: clarify buster triage

[Sylvain Beucler (@beuc)]

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
c2b134bc by Sylvain Beucler at 2022-10-18T18:51:53+02:00
CVE-2018-10911/bluez: clarify buster triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -294385,8 +294385,8 @@ CVE-2018-10911 (A flaw was found in the way dic_unserialize function of glusterf
 	NOTE: https://github.com/gluster/glusterfs/commit/cc3271ebf3aacdbbc77fdd527375af78ab12ea8d
 CVE-2018-10910 (A bug in Bluez may allow for the Bluetooth Discoverable state being se ...)
 	- bluez 5.54-1 (low; bug #925369)
-	[buster] - bluez <ignored> (Minor issue)
-	[stretch] - bluez <ignored> (Minor issue, does not affected Gnome Bluetooth in stretch)
+	[buster] - bluez <ignored> (Minor issue, invasive fix, workaround present in buster's gnome-bluetooth)
+	[stretch] - bluez <ignored> (Minor issue, does not affect Gnome Bluetooth in stretch)
 	[jessie] - bluez <no-dsa> (Minor issue because in gnome-bluetooth <= 3.26 the D-Bus calls were synchronous and thus the issue in bluez will have no actual affect)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1606203
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1602985



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2b134bc3583024eaf25a329af5b4f059abad3fb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/c2b134bc3583024eaf25a329af5b4f059abad3fb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221018/385680a8/attachment-0001.htm>