Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6195da8d by Salvatore Bonaccorso at 2018-05-27T08:20:40+02:00
Update notes for CVE-2017-14992 and add golang-github-vbatts-tar-split
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -38173,7 +38173,12 @@ CVE-2017-14994 (ReadDCMImage in coders/dcm.c in
GraphicsMagick 1.3.26 allows rem
CVE-2017-14993 (OXID eShop Community Edition before 6.0.0 RC3 (development),
4.10.x ...)
NOT-FOR-US: OXID eShop Community Edition
CVE-2017-14992 (Lack of content verification in Docker-CE (Also known as Moby)
...)
- - docker.io <undetermined>
+ - docker.io <unfixed>
+ - golang-github-vbatts-tar-split 0.10.2-1
+ NOTE: Issue needs to be fixed in src:golang-github-vbatts-tar-split
first
+ NOTE: https://github.com/vbatts/tar-split/issues/41
+ NOTE: docker.io needs then a rebuild with a fixed
golang-github-vbatts-tar-split
+ NOTE: version.
CVE-2017-14991 (The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel
before ...)
- linux 4.13.4-1
[stretch] - linux <not-affected> (Vulnerable code introduced later)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/6195da8deb160449de5cc98c4d5ac1af9f484c40
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/6195da8deb160449de5cc98c4d5ac1af9f484c40
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
