Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: f3d5a0f7 by Thorsten Alteholz at 2018-09-13T13:56:09Z follow security team with no-das for CVE-2018-16976 - - - - - edca7655 by Thorsten Alteholz at 2018-09-13T13:57:08Z follow security team with no-dsa for CVE-2018-16745 CVE-2018-16744 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -66,6 +66,7 @@ CVE-2017-18347 (Incorrect access control in RDP Level 1 on STMicroelectronics ST CVE-2018-16976 (Gitolite before 3.6.9 does not (in certain configurations involving ...) - gitolite3 <unfixed> (bug #908699) [stretch] - gitolite3 <no-dsa> (Minor issue) + [jessie] - gitolite3 <no-dsa> (Minor issue) - gitolite <removed> NOTE: https://groups.google.com/forum/#!topic/gitolite-announce/WrwDTYdbfRg NOTE: https://github.com/sitaramc/gitolite/commit/dc13dfca8fdae5634bb0865f7e9822d2a268ed59 @@ -524,12 +525,14 @@ CVE-2018-16745 [buffer overflow in faxrec] RESERVED - mgetty <unfixed> [stretch] - mgetty <no-dsa> (Minor issue) + [jessie] - mgetty <no-dsa> (Minor issue) NOTE: https://www.x41-dsec.de/lab/advisories/x41-2018-007-mgetty/ NOTE: Upstream commit: 750939dfcaea9aa93dcea99526c49da7cafafe7f (1.2.1) CVE-2018-16744 [command injection in faxrec.c] RESERVED - mgetty <unfixed> [stretch] - mgetty <no-dsa> (Minor issue) + [jessie] - mgetty <no-dsa> (Minor issue) NOTE: https://www.x41-dsec.de/lab/advisories/x41-2018-007-mgetty/ NOTE: Upstream commit: 750939dfcaea9aa93dcea99526c49da7cafafe7f (1.2.1) CVE-2018-16743 [stack-based buffer overflow with long username in contrib/next-login/login.c] View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/16830e2186d70719a467fa3fea70b5fa8fff5f8e...edca7655916dcb5bca389643e0f739e8c48a4af8 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/16830e2186d70719a467fa3fea70b5fa8fff5f8e...edca7655916dcb5bca389643e0f739e8c48a4af8 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits