[Git][security-tracker-team/security-tracker][master] bind9 n/a

Thu, 20 Jun 2019 06:41:28 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
ea6a3b75 by Moritz Muehlenhoff at 2019-06-20T13:40:20Z
bind9 n/a
libsass triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16886,6 +16886,8 @@ CVE-2019-6472
 CVE-2019-6471 [A race condition when discarding malformed packets can cause 
BIND to exit with an assertion failure]
        RESERVED
        - bind9 <unfixed> (bug #930746)
+       [stretch] - bind9 <not-affected> (Only affects 9.11 and later)
+       [jessie] - bind9 <not-affected> (Only affects 9.11 and later)
        NOTE: https://kb.isc.org/v1/docs/cve-2019-6471
 CVE-2019-6470 [DHCPv6 server crashes regularly]
        RESERVED
@@ -55028,17 +55030,22 @@ CVE-2018-11696 (An issue was discovered in LibSass 
through 3.5.4. A NULL pointer
        NOTE: https://github.com/sass/libsass/issues/2665
        NOTE: 
https://github.com/sass/libsass/commit/38f4c3699d06b64128bebc7cf1e8b3125be74dc4
 CVE-2018-11695 (An issue was discovered in LibSass through 3.5.2. A NULL 
pointer deref ...)
-       - libsass <unfixed>
+       - libsass 3.5.5-1 (low)
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2664
+       NOTE: 
https://github.com/sass/libsass/commit/0bc35e3d26922229d5a3e3308860cf0fcee5d1cf
 CVE-2018-11694 (An issue was discovered in LibSass through 3.5.4. A NULL 
pointer deref ...)
-       - libsass <unfixed>
+       - libsass <unfixed> (low)
+       [buster] - libsass <no-dsa> (Minor issue)
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2663
+       NOTE: 
https://github.com/glebm/libsass/commit/e5964a7df9bdb36f2944e7289812f1057aad2c5d
+       NOTE: 
https://github.com/sass/libsass/commit/c93f0581c6b7794d8c1d5637c5c4dabd591b1d57
 CVE-2018-11693 (An issue was discovered in LibSass through 3.5.4. An 
out-of-bounds rea ...)
-       - libsass <unfixed>
+       - libsass 3.5.5-1 (low)
        [stretch] - libsass <no-dsa> (Minor issue)
        NOTE: https://github.com/sass/libsass/issues/2661
+       NOTE: 
https://github.com/xzyfer/libsass/commit/af0e12cdf09d43dbd1fc11e3f64b244277cc1a1e
 CVE-2018-11692 (** DISPUTED ** An issue was discovered on Canon LBP6650, 
LBP3370, LBP3 ...)
        NOT-FOR-US: Canon devices
 CVE-2018-11691 (Emerson VE6046 09.0.12 devices have hardcoded admin 
credentials allowi ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea6a3b751d30d29e66c8e8e60f41cb2ef2096d38

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea6a3b751d30d29e66c8e8e60f41cb2ef2096d38
You're receiving this email because of your account on salsa.debian.org.


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to