Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bc1acf1f by Salvatore Bonaccorso at 2018-07-02T07:58:28+02:00
Sync URL with one uses within kernel-sec
- - - - -
768a5ab3 by Salvatore Bonaccorso at 2018-07-02T07:59:19+02:00
Update status for CVE-2018-12904/linux
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -311,9 +311,9 @@ CVE-2017-18342 (In PyYAML before 4.1, the yaml.load() API
could execute arbitrar
NOTE: to applications misusing the API over the years. The CVE ID was
assigned to raise
NOTE: awareness (and 4.1 now fixes the default behaviour as well)
CVE-2018-12904 (In arch/x86/kvm/vmx.c in the Linux kernel before 4.17.2, when
nested ...)
- - linux <unfixed>
+ - linux <not-affected> (Vulnerability introduced later)
NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1589
- NOTE:
https://github.com/torvalds/linux/commit/727ba748e110b4de50d142edca9d6a9b7e6111d8
+ NOTE:
https://git.kernel.org/linus/727ba748e110b4de50d142edca9d6a9b7e6111d8
CVE-2018-12903 (In CyberArk Endpoint Privilege Manager (formerly Viewfinity)
...)
NOT-FOR-US: CyberArk Endpoint Privilege Manager
CVE-2018-12902 (In Easy Magazine through 2012-10-26, there is XSS in the
search bar of ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/c6b4bace0cc9b98fb7f116eb5d441d6886cda0be...768a5ab3647ca39f96c3e1b78e5bc9652f9d31d9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/c6b4bace0cc9b98fb7f116eb5d441d6886cda0be...768a5ab3647ca39f96c3e1b78e5bc9652f9d31d9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
