Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6195da8d by Salvatore Bonaccorso at 2018-05-27T08:20:40+02:00 Update notes for CVE-2017-14992 and add golang-github-vbatts-tar-split - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -38173,7 +38173,12 @@ CVE-2017-14994 (ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows rem CVE-2017-14993 (OXID eShop Community Edition before 6.0.0 RC3 (development), 4.10.x ...) NOT-FOR-US: OXID eShop Community Edition CVE-2017-14992 (Lack of content verification in Docker-CE (Also known as Moby) ...) - - docker.io <undetermined> + - docker.io <unfixed> + - golang-github-vbatts-tar-split 0.10.2-1 + NOTE: Issue needs to be fixed in src:golang-github-vbatts-tar-split first + NOTE: https://github.com/vbatts/tar-split/issues/41 + NOTE: docker.io needs then a rebuild with a fixed golang-github-vbatts-tar-split + NOTE: version. CVE-2017-14991 (The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before ...) - linux 4.13.4-1 [stretch] - linux <not-affected> (Vulnerable code introduced later) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6195da8deb160449de5cc98c4d5ac1af9f484c40 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6195da8deb160449de5cc98c4d5ac1af9f484c40 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits