Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9a5b0045 by Markus Koschany at 2018-12-04T17:22:55Z
suricata: Remove no-dsa tags for upcoming DLA.
- - - - -
80e904ea by Markus Koschany at 2018-12-04T17:23:52Z
Reserve DLA-1603-1 for suricata
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -37079,7 +37079,6 @@ CVE-2018-6795 (PHP Scripts Mall Naukri Clone Script
3.0.3 has Stored XSS via eve
CVE-2018-6794 (Suricata before 4.0.4 is prone to an HTTP detection bypass ...)
- suricata 1:4.0.4-1 (bug #889842)
[stretch] - suricata <no-dsa> (Minor issue)
- [jessie] - suricata <no-dsa> (Minor issue)
[wheezy] - suricata <no-dsa> (Minor issue)
NOTE: https://redmine.openinfosecfoundation.org/issues/2427
NOTE:
https://github.com/OISF/suricata/pull/3202/commits/e1ef57c848bbe4e567d5d4b66d346a742e3f77a1
@@ -62542,7 +62541,6 @@ CVE-2017-15378 (SQL Injection exists in the E-Sic 1.0
password reset parameter (
CVE-2017-15377 (In Suricata before 4.x, it was possible to trigger lots of
redundant ...)
- suricata 1:4.0.0-1 (low)
[stretch] - suricata <no-dsa> (Minor issue)
- [jessie] - suricata <no-dsa> (Minor issue)
[wheezy] - suricata <no-dsa> (Minor issue)
NOTE:
https://github.com/OISF/suricata/pull/2680/commits/47afc577ff763150f9b47f10331f5ef9eb847a57
NOTE: https://redmine.openinfosecfoundation.org/issues/2231
@@ -90069,14 +90067,12 @@ CVE-2002-2447
RESERVED
CVE-2017-XXXX [dns: out of bound memory read]
- suricata 3.2.1-1 (bug #856648)
- [jessie] - suricata <no-dsa> (Minor issue)
[wheezy] - suricata <not-affected> (vulnerable code not present)
NOTE: https://redmine.openinfosecfoundation.org/issues/2022
NOTE: Fixed by:
https://github.com/inliniac/suricata/commit/20990f7a7eb7939946a275dfc9a95426b0080a19
(3.2.1)
CVE-2017-7177 (Suricata before 3.2.1 has an IPv4 defragmentation evasion issue
caused ...)
{DLA-865-1}
- suricata 3.2.1-1 (bug #856649)
- [jessie] - suricata <no-dsa> (Minor issue)
NOTE: https://redmine.openinfosecfoundation.org/issues/2019
NOTE: Fixed by:
https://github.com/inliniac/suricata/commit/4a04f814b15762eb446a5ead4d69d021512df6f8
(3.2.1)
CVE-2017-6442
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[04 Dec 2018] DLA-1603-1 suricata - security update
+ {CVE-2017-7177 CVE-2017-15377 CVE-2018-6794}
+ [jessie] - suricata 2.0.7-2+deb8u3
[30 Nov 2018] DLA-1602-1 nsis - security update
{CVE-2015-9267 CVE-2015-9268}
[jessie] - nsis 2.46-10+deb8u1
=====================================
data/dla-needed.txt
=====================================
@@ -87,8 +87,6 @@ samba (Emilio Pozuelo)
sleuthkit
NOTE: 20181129: seem to be more problems than mentioned in the CVE if
nodesize == rec_off or (rec_off + keylen) == nodesize (Thorsten)
--
-suricata (Markus Koschany)
---
symfony (Roberto C. Sánchez)
--
systemd
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/6211e37b646904ee29b28d500b9ef750d367d0c9...80e904ead4d8ae62d17807a539cc36b0a29b4a4d
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/6211e37b646904ee29b28d500b9ef750d367d0c9...80e904ead4d8ae62d17807a539cc36b0a29b4a4d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
