Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0e49d953 by Salvatore Bonaccorso at 2018-04-18T17:13:49+02:00
Add *initial* information for CVE-2018-1172
Use special tracking for squid, since it was removed from archive, later
for the (for now only) experimental upload renamed from squid3 to squid
back.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -24346,6 +24346,12 @@ CVE-2018-1173
RESERVED
CVE-2018-1172
RESERVED
+ [experimental] - squid 4.0.21-1~exp5
+ - squid <removed>
+ - squid3 <unfixed>
+ NOTE: src:squid as source package reintroduced for 4.x in experimental
+ NOTE: http://www.squid-cache.org/Advisories/SQUID-2018_3.txt
+ NOTE: Squid 3.5 patch:
http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID-2018_3.patch
CVE-2018-1171 (This vulnerability allows local attackers to escalate
privileges on ...)
NOT-FOR-US: Joyent SmartOS
CVE-2018-1170 (This vulnerability allows adjacent attackers to inject
arbitrary ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e49d95370e12a188c333ea432ff5eeb98708edf
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e49d95370e12a188c333ea432ff5eeb98708edf
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
