[Git][security-tracker-team/security-tracker][master] libssh fixed

Tue, 16 Oct 2018 08:59:08 -0700 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
edc99744 by Moritz Muehlenhoff at 2018-10-16T15:58:23Z
libssh fixed
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18746,7 +18746,7 @@ CVE-2018-10934
        - wildfly <itp> (bug #752018)
 CVE-2018-10933
        RESERVED
-       - libssh <unfixed> (bug #911149)
+       - libssh 0.8.4-1 (bug #911149)
        NOTE: 
https://www.libssh.org/2018/10/16/libssh-0-8-4-and-0-7-6-security-and-bugfix-release/
        NOTE: 
https://git.libssh.org/projects/libssh.git/commit/?id=2bddafeb709eacc80ad31fec40479f9b628a8bd7
 (master)
        NOTE: 
https://git.libssh.org/projects/libssh.git/commit/?id=825f4ba96407abe8cebb046a7503fa2bf5de9df6
 (master)
@@ -48830,7 +48830,7 @@ CVE-2018-0674 (AttacheCase ver.2.8.4.0 and earlier 
allows an arbitrary script ..
 CVE-2018-0673
        RESERVED
 CVE-2018-0672 (Cross-site scripting vulnerability in Movable Type versions 
prior to ...)
-       TODO: check
+       - movabletype-opensource <removed>
 CVE-2018-0671
        RESERVED
 CVE-2018-0670
@@ -48890,7 +48890,7 @@ CVE-2018-0644 (Buffer overflow in Ubuntu14.04 ORCA 
(Online Receipt Computer ...)
 CVE-2018-0643 (Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 ...)
        NOT-FOR-US: ORCA (Online Receipt Computer Advantage)
 CVE-2018-0642 (Cross-site scripting vulnerability in FV Flowplayer Video 
Player 6.1.2 ...)
-       TODO: check
+       NOT-FOR-US: FV Flowplayer Video Player
 CVE-2018-0641
        RESERVED
 CVE-2018-0640
@@ -51711,7 +51711,7 @@ CVE-2017-16641 (lib/rrd.php in Cacti 1.1.27 allows 
remote authenticated administ
 CVE-2017-16640
        RESERVED
 CVE-2017-16639 (Tor Browser on Windows before 8.0 allows remote attackers to 
bypass ...)
-       TODO: check
+       NOT-FOR-US: Tor Browser on Windows
 CVE-2008-7319 (The Net::Ping::External extension through 0.15 for Perl does 
not ...)
        - libnet-ping-external-perl <removed> (bug #881097)
        [wheezy] - libnet-ping-external-perl <ignored> (Package may be removed 
from Wheezy, see #881102)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/edc9974441267b8de3f9b0dfa8f15d495d9f47e2

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/edc9974441267b8de3f9b0dfa8f15d495d9f47e2
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to