Ola Lundqvist pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f7a18f93 by Ola Lundqvist at 2018-07-06T11:37:59+02:00
Ignore also for jessie as it is ignored for strech and wheezy.
- - - - -
703e16c6 by Ola Lundqvist at 2018-07-06T11:43:48+02:00
Triage results following stretch.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -673,6 +673,8 @@ CVE-2018-13045
CVE-2018-XXXX [accountservice: insufficient path check in
user_change_icon_file_authorized_cb()]
- accountsservice <unfixed> (low)
[stretch] - accountsservice <no-dsa> (Minor issue)
+ [jessie] - accountsservice <ignored> (Minor issue)
+ [wheezy] - accountsservice <end-of-life>
NOTE: http://www.openwall.com/lists/oss-security/2018/07/02/2
CVE-2018-13054 (An issue was discovered in Cinnamon 1.9.2 through 3.8.6. The
...)
- cinnamon <unfixed>
@@ -708,6 +710,7 @@ CVE-2018-13034
CVE-2018-13033 (The Binary File Descriptor (BFD) library (aka libbfd), as
distributed ...)
- binutils <unfixed> (low)
[stretch] - binutils <ignored> (Minor issue)
+ [jessie] - binutils <ignored> (Minor issue)
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=23361
CVE-2018-13032 (ECESSA ShieldLink SL175EHQ 10.7.4 devices have CSRF to add
superuser ...)
NOT-FOR-US: ECESSA ShieldLink
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/7c27747c02f88009d52968f3804c8d4d983b6c75...703e16c612c1347a2c847bcc92d906509bc992c9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/7c27747c02f88009d52968f3804c8d4d983b6c75...703e16c612c1347a2c847bcc92d906509bc992c9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
