Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a0702db1 by Salvatore Bonaccorso at 2019-03-17T12:28:08Z
Add Debian bug reference for CVE-2018-1279/rabbitmq-server
- - - - -
7a76ed37 by Salvatore Bonaccorso at 2019-03-17T12:28:52Z
CVE-2018-1279: fix typo in notes
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -75414,12 +75414,12 @@ CVE-2017-17448 (net/netfilter/nfnetlink_cthelper.c in
the Linux kernel through 4
CVE-2018-1280 (Pivotal Greenplum Command Center versions 2.x prior to 2.5.1
contains ...)
NOT-FOR-US: Pivotal
CVE-2018-1279 (Pivotal RabbitMQ for PCF, all versions, uses a
deterministically ...)
- - rabbitmq-server <unfixed>
+ - rabbitmq-server <unfixed> (bug #924768)
[stretch] - rabbitmq-server <no-dsa> (Minor issue)
[jessie] - rabbitmq-server <no-dsa> (Minor issue)
NOTE: https://pivotal.io/security/cve-2018-1279
NOTE: Underlying issue is the use of deterministically generated cookie.
- NOTE: Issue can bemitigated by restricting network access from
untrusted sources.
+ NOTE: Issue can be mitigated by restricting network access from
untrusted sources.
CVE-2018-1278 (Apps Manager included in Pivotal Application Service, versions
1.12.x ...)
NOT-FOR-US: Pivotal
CVE-2018-1277 (Cloud Foundry Garden-runC, versions prior to 1.13.0, does not
...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/b244e304b8d2dc4414b91de12e19949cf19aa256...7a76ed3765a3b975eba5f0a1845b0621c7e6afad
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/b244e304b8d2dc4414b91de12e19949cf19aa256...7a76ed3765a3b975eba5f0a1845b0621c7e6afad
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
