Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
96edb401 by Moritz Muehlenhoff at 2018-09-20T15:22:22Z
more glusterfs commits
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15934,7 +15934,7 @@ CVE-2018-10908 (It was found that vdsm before version
4.20.37 invokes qemu-img o
CVE-2018-10907 (It was found that glusterfs server is vulnerable to multiple
stack ...)
- glusterfs 4.1.4-1 (bug #909215)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1601642
- NOTE: https://review.gluster.org/21070
+ NOTE:
https://github.com/gluster/glusterfs/commit/35f86ce46240c4f9c216bbc29164ce441cfca1e7
CVE-2018-10906 (In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount
is ...)
{DSA-4257-1 DLA-1468-1}
- fuse3 <itp> (bug #904216)
@@ -15946,7 +15946,7 @@ CVE-2018-10905 (CloudForms Management Engine (cfme) is
vulnerable to an improper
CVE-2018-10904 (It was found that glusterfs server does not properly sanitize
file ...)
- glusterfs 4.1.4-1 (bug #909215)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1601298
- NOTE: https://review.gluster.org/21072
+ NOTE:
https://github.com/gluster/glusterfs/commit/9716ce88b3a1faf135a6badc02d94249898059dd
CVE-2018-10903 (A flaw was found in python-cryptography versions between
>=1.9.0 and ...)
- python-cryptography 2.3-1 (bug #904072)
[stretch] - python-cryptography <not-affected> (Vulnerable code
introduced later)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/96edb40136cae70257fb6505cfbd2f3ad9934687
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/96edb40136cae70257fb6505cfbd2f3ad9934687
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
