Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a09cff8b by Moritz Muehlenhoff at 2018-05-18T22:09:03+02:00
calibre no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7994,6 +7994,8 @@ CVE-2018-7890 (A remote code execution issue was
discovered in Zoho ManageEngine
NOT-FOR-US: Zoho ManageEngine Applications Manager
CVE-2018-7889 (gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls
cPickle.load on ...)
- calibre 3.19.0+dfsg-1 (bug #892242)
+ [stretch] - calibre <no-dsa> (Minor issue)
+ [jessie] - calibre <no-dsa> (Minor issue)
[wheezy] - calibre <no-dsa> (Minor issue)
NOTE: https://bugs.launchpad.net/calibre/+bug/1753870
NOTE: deserialization fix
https://github.com/kovidgoyal/calibre/commit/aeb5b036a0bf657951756688b3c72bd68b6e4a7d
@@ -94903,7 +94905,7 @@ CVE-2016-5411
(/var/lib/ovirt-engine/setup/engine-DC-config.py in Red Hat QuickS
NOT-FOR-US: ovirt engine
CVE-2016-5410 (firewalld.py in firewalld before 0.4.3.3 allows local users to
bypass ...)
- firewalld 0.4.3.3-1 (bug #834529)
- [jessie] - firewalld <no-dsa> (Minor issue)
+ [jessie] - firewalld <ignored> (Minor issue)
NOTE: Introduced by:
https://github.com/t-woerner/firewalld/commit/6b9867cd5c5e2c83adeec42666521a420e59ef11
CVE-2016-5409 (Red Hat OpenShift Enterprise 2 does not include the HTTPOnly
flag in a ...)
NOT-FOR-US: OpenShift Enterprise
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a09cff8ba9cb2d4b6423985c95b073fc7014b8d4
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a09cff8ba9cb2d4b6423985c95b073fc7014b8d4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
