Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a7b3b7ba by Sylvain Beucler at 2019-04-23T09:31:12Z
ncurses/CVE-2018-19217: already fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30957,10 +30957,11 @@ CVE-2018-19218 (In LibSass 3.5-stable, there is an
illegal address access at Sas
- libsass <undetermined>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1643758
CVE-2018-19217 (** DISPUTED ** In ncurses, possibly a 6.x version, there is a
NULL poi ...)
- - ncurses <unfixed> (unimportant)
+ - ncurses 6.0+20170701-1
+ [stretch] - ncurses 6.0+20161126-1+deb9u1
+ [jessie] - ncurses 5.9+20140913-1+deb8u1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1643753
- NOTE: not reproduced, no reporter feedback, upstream considers invalid,
minor potential severity (local DoS)
- NOTE:
https://lists.gnu.org/archive/html/bug-ncurses/2019-04/msg00007.html
+ NOTE:
https://lists.gnu.org/archive/html/bug-ncurses/2019-04/msg00020.html
CVE-2018-19216 (Netwide Assembler (NASM) before 2.13.02 has a use-after-free
in detoke ...)
- nasm 2.13.02-0.1
[stretch] - nasm <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a7b3b7ba6683dbcd1ff817e90f5a91d9161df450
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a7b3b7ba6683dbcd1ff817e90f5a91d9161df450
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
