Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d59a8831 by Salvatore Bonaccorso at 2018-10-01T12:03:16Z
Put temporary description in [] brackets
- - - - -
3febb4cd by Salvatore Bonaccorso at 2018-10-01T12:04:13Z
Add reference to advisory and commits
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1885,8 +1885,11 @@ CVE-2018-16986
RESERVED
CVE-2018-16985 (In Lizard (formerly LZ5) 2.0, use of an invalid memory address
was ...)
NOT-FOR-US: Lizard
-CVE-2018-16984 (Password hash disclosure to "view only" admin users)
+CVE-2018-16984 [Password hash disclosure to "view only" admin users]
- python-django <unfixed> (bug #910016)
+ NOTE: https://www.djangoproject.com/weblog/2018/oct/01/security-release/
+ NOTE:
https://github.com/django/django/commit/bf39978a53f117ca02e9a0c78b76664a41a54745
(master)
+ NOTE:
https://github.com/django/django/commit/c4bd5b597e0aa2432e4c867b86650f18af117851
(2.1)
CVE-2018-16983 (NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x
and other ...)
- mozilla-noscript <unfixed> (unimportant)
NOTE: This is not a security issue in NoScript by itself
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/ac2eb633b232eb5fea6eeba7214a10e773b45b6b...3febb4cd80769b84522615532d401b5f1f5288ae
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/ac2eb633b232eb5fea6eeba7214a10e773b45b6b...3febb4cd80769b84522615532d401b5f1f5288ae
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
