[Git][security-tracker-team/security-tracker][master] Demote severity for fig2dev to unimportant

Salvatore Bonaccorso Thu, 30 Aug 2018 14:07:11 -0700

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
de243170 by Salvatore Bonaccorso at 2018-08-30T21:06:00Z
Demote severity for fig2dev to unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -199,10 +199,11 @@ CVE-2018-16142 (PHPOK 4.8.278 has a Reflected XSS 
vulnerability in ...)
 CVE-2018-16141 (ThinkCMF X2.2.3 has an arbitrary file deletion vulnerability 
in ...)
        NOT-FOR-US: ThinkCMF
 CVE-2018-16140 (A buffer underwrite vulnerability in get_line() (read.c) in 
fig2dev ...)
-       - fig2dev <unfixed> (bug #907660)
-       - transfig <removed>
+       - fig2dev <unfixed> (unimportant; bug #907660)
+       - transfig <removed> (unimportant)
        NOTE: https://sourceforge.net/p/mcj/tickets/28/
        NOTE: 
https://sourceforge.net/p/mcj/fig2dev/ci/e0c4b02429116b15ad1568c2c425f06b95b95830
+       NOTE: Crash in CLI tool, no security impact
 CVE-2018-16139
        RESERVED
 CVE-2018-16138



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/de243170460860bf2f2833773a5d6be599f9e4c0

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/de243170460860bf2f2833773a5d6be599f9e4c0
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Demote severity for fig2dev to unimportant

Reply via email to