Mattia Rizzolo pushed to branch master at Debian Security Tracker / security-tracker
Commits: b29c34b0 by Mattia Rizzolo at 2018-07-03T10:37:29+02:00 mark CVE-2018-13043/devscripts as not affecting jessie+stretch Signed-off-by: Mattia Rizzolo <mat...@debian.org> - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -507,8 +507,8 @@ CVE-2018-1000205 (U-Boot contains a CWE-20: Improper Input Validation vulnerabil NOTE: No security impact as supported/packaged in Debian CVE-2018-13043 (scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code ...) - devscripts <unfixed> (low; bug #902409) - [stretch] - devscripts <no-dsa> (Minor issue) - [jessie] - devscripts <no-dsa> (Minor issue) + [stretch] - devscripts <not-affected> (Vulnerable code introduced in 2.17.7) + [jessie] - devscripts <not-affected> (Vulnerable code introduced in 2.17.7) CVE-2018-1000610 (A exposure of sensitive information vulnerability exists in Jenkins ...) NOT-FOR-US: Jenkins plugin CVE-2018-1000609 (A exposure of sensitive information vulnerability exists in Jenkins ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b29c34b07c01f4356e4e1e07ba6bd8f880ca772f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b29c34b07c01f4356e4e1e07ba6bd8f880ca772f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits