Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 3e91c6ac by Salvatore Bonaccorso at 2018-02-04T09:19:28+01:00 Add CVE-2018-6188/python-django - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -1132,8 +1132,13 @@ CVE-2018-6196 (w3m through 0.5.3 is prone to an infinite recursion flaw in ...) NOTE: https://github.com/tats/w3m/commit/8354763b90490d4105695df52674d0fcef823e92 CVE-2018-6189 RESERVED -CVE-2018-6188 +CVE-2018-6188 [information leakage in AuthenticationForm] RESERVED + - python-django 1:1.11.10-1 + [stretch] - python-django <not-affected> (Issue introduced in 1.11.8 and 2.0) + [jessie] - python-django <not-affected> (Issue introduced in 1.11.8 and 2.0) + [wheezy] - python-django <not-affected> (Issue introduced in 1.11.8 and 2.0) + NOTE: https://www.djangoproject.com/weblog/2018/feb/01/security-releases/ CVE-2018-6187 (In Artifex MuPDF 1.12.0, there is a heap-based buffer overflow ...) - mupdf <unfixed> (bug #888464) [stretch] - mupdf <no-dsa> (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3e91c6acc3d1ca48b05f3a53de0ad2638cb2a757 --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3e91c6acc3d1ca48b05f3a53de0ad2638cb2a757 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits