Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: bfe52d0b by Salvatore Bonaccorso at 2018-11-06T20:06:53Z CVE-2018-14652/glusterfs fixed in unstable with 5.0-1 upload The vulnerability fix is just a part of the whole upstream change which landed in 5.0alpha, upstream commit as per http://git.gluster.org/cgit/glusterfs.git/commit/?id=052849983e51a061d7fb2c3ffd74fa78bb257084 For the release-4.1 branch the fix is part of that one as http://git.gluster.org/cgit/glusterfs.git/commit/?id=e2c195712a9ecbda4fa02f5308138a1257a2558a .. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -10598,7 +10598,7 @@ CVE-2018-14653 (The Gluster file system through versions 4.1.4 and 3.12 is vulne NOTE: http://git.gluster.org/cgit/glusterfs.git/commit/?id=e2712fbd38477e736f157c9dbfbbae9c253b6c13 CVE-2018-14652 (The Gluster file system through versions 3.12 and 4.1.4 is vulnerable ...) {DLA-1565-1} - - glusterfs <unfixed> (bug #912997) + - glusterfs 5.0-1 (bug #912997) NOTE: https://www.openwall.com/lists/oss-security/2018/10/31/5 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1632974 NOTE: https://review.gluster.org/#/c/glusterfs/+/21535/ View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bfe52d0bc918def793a76e7f507a6a997f993f4f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bfe52d0bc918def793a76e7f507a6a997f993f4f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits