Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6d515c82 by Salvatore Bonaccorso at 2018-02-23T07:11:47+01:00 Add CVE-2018-7262/ceph - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -461,8 +461,11 @@ CVE-2018-7263 (The mad_decoder_run() function in decoder.c in Underbit libmad th NOTE: https://bugs.debian.org/870608 NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1081784 TODO: clarify with MITRE why this CVE was additionally assigned -CVE-2018-7262 +CVE-2018-7262 [Malformed HTTP requests handled in rgw_civetweb.cc:RGW::init_env() can lead to NULL pointer dereference] RESERVED + - ceph <unfixed> + NOTE: Original pull request: https://github.com/ceph/ceph/pull/20403 + NOTE: Superseeded by: https://github.com/ceph/ceph/pull/20488 CVE-2018-7261 (There are multiple Persistent XSS vulnerabilities in Radiant CMS ...) NOT-FOR-US: Radiant CMS CVE-2018-7260 (Cross-site scripting (XSS) vulnerability in db_central_columns.php in ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6d515c823d147ec6103b5caa87b120dc706c3f27 --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6d515c823d147ec6103b5caa87b120dc706c3f27 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits