Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: 300b6efe by Thorsten Alteholz at 2018-11-24T15:55:53Z add patches to temporary xml-security-c CVE - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -11673,6 +11673,8 @@ CVE-2018-14879 CVE-2018-XXXX [DSA verification crashes OpenSSL on invalid combinations of key content] - xml-security-c 2.0.2-2 (bug #913136) NOTE: https://issues.apache.org/jira/browse/SANTUARIO-496 + NOTE: patch 1/2: http://svn.apache.org/viewvc?view=revision&revision=1843562 + NOTE: patch 2/2: http://svn.apache.org/viewvc?view=revision&revision=1843566 CVE-2018-XXXX [Default KeyInfo resolver doesn't check for empty element content.] [experimental] - xml-security-c 2.0.1-1 - xml-security-c 1.7.3-4+deb9u1 (bug #905332) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/300b6efe70728e965361148caff4e1466dd347f1 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/300b6efe70728e965361148caff4e1466dd347f1 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits