Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
93880f15 by Salvatore Bonaccorso at 2019-07-26T21:03:13Z
Add notes on followup fixes for CVE-2018-1000156
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -196371,7 +196371,12 @@ CVE-2018-1000156 (GNU Patch version 2.7.6 contains
an input validation vulnerabi
NOTE:
http://git.savannah.gnu.org/cgit/patch.git/commit/?id=123eaff0d5d1aebe128295959435b9ca5909c26d
NOTE: Respective patch in FreeBSD:
https://www.freebsd.org/security/advisories/FreeBSD-SA-15:18.bsdpatch.asc
NOTE: Respective patch in OpenBSD:
https://ftp.openbsd.org/pub/OpenBSD/patches/5.7/common/013_patch.patch.sig
- NOTE: wheezy patch adds a testcase
+ NOTE: Regression with only the initial commit:
+ NOTE: https://savannah.gnu.org/bugs/?53820
+ NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1092500
+ NOTE: Followup fixes:
+ NOTE:
http://git.savannah.gnu.org/cgit/patch.git/commit/?id=19599883ffb6a450d2884f081f8ecf68edbed7ee
+ NOTE:
http://git.savannah.gnu.org/cgit/patch.git/commit/?id=369dcccdfa6336e5a873d6d63705cfbe04c55727
CVE-2015-1417 (The inet module in FreeBSD 10.2x before 10.2-PRERELEASE,
10.2-BETA2-p2 ...)
- kfreebsd-10 10.2-1 (unimportant)
NOTE: kfreebsd not covered by security support in Jessie
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/93880f1534706775568ee9c42e765bb0b6c03677
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/93880f1534706775568ee9c42e765bb0b6c03677
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
