Markus Koschany pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fe5b015e by Markus Koschany at 2018-08-30T12:35:55Z
Mark open libxkbcommon issues as no-dsa for Jessie.
Minor issues, package is not used by any sponsor.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -657,21 +657,25 @@ CVE-2018-15865
CVE-2018-15864 (Unchecked NULL pointer usage in resolve_keysym in
xkbcomp/parser.y in ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/a8ea7a1d3daa7bdcb877615ae0a252c189153bd2
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039243.html
CVE-2018-15863 (Unchecked NULL pointer usage in ResolveStateAndPredicate in
...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/96df3106d49438e442510c59acad306e94f3db4d
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039243.html
CVE-2018-15862 (Unchecked NULL pointer usage in LookupModMask in
xkbcomp/expr.c in ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/4e2ee9c3f6050d773f8bbe05bc0edb17f1ff8371
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039243.html
CVE-2018-15861 (Unchecked NULL pointer usage in ExprResolveLhs in
xkbcomp/expr.c in ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/38e1766bc6e20108948aec8a0b222a4bad0254e9
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039243.html
CVE-2018-15860
@@ -679,36 +683,43 @@ CVE-2018-15860
CVE-2018-15859 (Unchecked NULL pointer usage when parsing invalid atoms in ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/bb4909d2d8fa6b08155e449986a478101e2b2634
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039243.html
CVE-2018-15858 (Unchecked NULL pointer usage when handling invalid aliases in
...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/badb428e63387140720f22486b3acbd3d738859f
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
CVE-2018-15857 (An invalid free in ExprAppendMultiKeysymList in
xkbcomp/ast-build.c in ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/c1e5ac16e77a21f87bdf3bc4dea61b037a17dddb
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
CVE-2018-15856 (An infinite loop when reaching EOL unexpectedly in
compose/parser.c ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/842e4351c2c97de6051cab6ce36b4a81e709a0e1
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
CVE-2018-15855 (Unchecked NULL pointer usage in xkbcommon before 0.8.1 could
be used by ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/917636b1d0d70205a13f89062b95e3a0fc31d4ff
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
CVE-2018-15854 (Unchecked NULL pointer usage in xkbcommon before 0.8.1 could
be used by ...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/e3cacae7b1bfda0d839c280494f23284a1187adf
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
CVE-2018-15853 (Endless recursion exists in xkbcomp/expr.c in xkbcommon and
...)
- libxkbcommon <unfixed> (low; bug #907302)
[stretch] - libxkbcommon <no-dsa> (Minor issue)
+ [jessie] - libxkbcommon <no-dsa> (Minor issue)
NOTE:
https://github.com/xkbcommon/libxkbcommon/commit/1f9d1248c07cda8aaff762429c0dce146de8632a
NOTE:
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
CVE-2018-15852 (Technicolor TC7200.20 devices allow remote attackers to cause
a denial ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/fe5b015ebae277436b77abc76d7f2831e337805e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/fe5b015ebae277436b77abc76d7f2831e337805e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
