Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4897177f by Thorsten Alteholz at 2020-04-25T19:23:48+02:00
fix missing only for Jessie, so this will be done now ...
- - - - -
1d32680d by Thorsten Alteholz at 2020-04-25T19:24:46+02:00
Reserve DLA-2184-1 for jsch
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -205136,7 +205136,6 @@ CVE-2015-8936 (Cross-site scripting (XSS)
vulnerability in squidGuard.cgi in squ
CVE-2016-5725 (Directory traversal vulnerability in JCraft JSch before 0.1.54
on Wind ...)
{DLA-611-1}
- jsch 0.1.54-1 (low)
- [jessie] - jsch <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/jsch/mailman/message/35318093/
CVE-2016-5724 (Cloudera CDH before 5.9 has Potentially Sensitive Information
in Diagn ...)
NOT-FOR-US: Cloudera
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[25 Apr 2020] DLA-2184-1 jsch - security update
+ {CVE-2016-5725}
+ [jessie] - jsch 0.1.51-1+deb8u1
[25 Apr 2020] DLA-2183-1 libgsf - security update
{CVE-2016-9888}
[jessie] - libgsf 1.14.30-2+deb8u1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a3b794e86d4b47c7dad72141bc1d900767cd3d1c...1d32680d7eae7051f932bb42ffcfbf76eaef8686
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a3b794e86d4b47c7dad72141bc1d900767cd3d1c...1d32680d7eae7051f932bb42ffcfbf76eaef8686
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
