Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d319debb by security tracker role at 2018-08-15T08:10:18Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -26786,6 +26786,7 @@ CVE-2018-5392 (mingw-w64 version 5.0.4 by default
produces executables that opt
NOTE: https://www.kb.cert.org/vuls/id/307144 (describes workaround)
CVE-2018-5391 [Remote denial of service via improper IP fragment handling]
RESERVED
+ {DSA-4272-1 DLA-1466-1}
- linux <unfixed>
NOTE: Mitigation: Change the default values of
net.ipv4.ipfrag_high_thresh and
NOTE: net.ipv4.ipfrag_low_thresh back to 256kB and 192 kB
(respectively) or
@@ -35158,7 +35159,7 @@ CVE-2018-2418 (SAP MaxDB ODBC driver (all versions
before 7.9.09.07) allows an .
NOT-FOR-US: SAP MaxDB ODBC driver
CVE-2018-2417 (Under certain conditions, the SAP Identity Management 8.0 (pass
of ...)
NOT-FOR-US: SAP Identity Management
-CVE-2018-2416 (SAP Identity Management 7.2 does not sufficiently validate an
XML ...)
+CVE-2018-2416 (SAP Identity Management 7.2 and 8.0 do not sufficiently
validate an ...)
NOT-FOR-US: SAP Identity Management
CVE-2018-2415 (SAP NetWeaver Application Server Java Web Container and HTTP
Service ...)
NOT-FOR-US: SAP NetWeaver Application Server Java Web Container and
HTTP Service
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d319debb2be2ddd9329ff35f7cdc6769067bb9b8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d319debb2be2ddd9329ff35f7cdc6769067bb9b8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
