Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: d319debb by security tracker role at 2018-08-15T08:10:18Z automatic update - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -26786,6 +26786,7 @@ CVE-2018-5392 (mingw-w64 version 5.0.4 by default produces executables that opt NOTE: https://www.kb.cert.org/vuls/id/307144 (describes workaround) CVE-2018-5391 [Remote denial of service via improper IP fragment handling] RESERVED + {DSA-4272-1 DLA-1466-1} - linux <unfixed> NOTE: Mitigation: Change the default values of net.ipv4.ipfrag_high_thresh and NOTE: net.ipv4.ipfrag_low_thresh back to 256kB and 192 kB (respectively) or @@ -35158,7 +35159,7 @@ CVE-2018-2418 (SAP MaxDB ODBC driver (all versions before 7.9.09.07) allows an . NOT-FOR-US: SAP MaxDB ODBC driver CVE-2018-2417 (Under certain conditions, the SAP Identity Management 8.0 (pass of ...) NOT-FOR-US: SAP Identity Management -CVE-2018-2416 (SAP Identity Management 7.2 does not sufficiently validate an XML ...) +CVE-2018-2416 (SAP Identity Management 7.2 and 8.0 do not sufficiently validate an ...) NOT-FOR-US: SAP Identity Management CVE-2018-2415 (SAP NetWeaver Application Server Java Web Container and HTTP Service ...) NOT-FOR-US: SAP NetWeaver Application Server Java Web Container and HTTP Service View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d319debb2be2ddd9329ff35f7cdc6769067bb9b8 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d319debb2be2ddd9329ff35f7cdc6769067bb9b8 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits