Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 0cac8ecd by Moritz Muehlenhoff at 2019-01-25T14:31:52Z openjdk-11 fixed mark one sunec issue as undetermined, unclear whether that actually affects OpenJDK - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -10953,7 +10953,7 @@ CVE-2019-2423 (Vulnerability in the PeopleSoft Enterprise PeopleTools component CVE-2019-2422 (Vulnerability in the Java SE component of Oracle Java SE ...) - openjdk-7 <unfixed> - openjdk-8 <unfixed> - - openjdk-11 <unfixed> + - openjdk-11 11.0.2+9-1 CVE-2019-2421 (Vulnerability in the PeopleSoft Enterprise HCM eProfile Manager ...) NOT-FOR-US: Oracle CVE-2019-2420 (Vulnerability in the MySQL Server component of Oracle MySQL ...) @@ -35523,10 +35523,8 @@ CVE-2018-12439 (MatrixSSL through 3.9.5 Open allows a memory-cache side-channel - matrixssl <removed> CVE-2018-12438 (The Elliptic Curve Cryptography library (aka sunec or libsunec) allows ...) - openjdk-7 <not-affected> (Didn't include/build sunec, see #750400) - - openjdk-8 <unfixed> (low) - [stretch] - openjdk-8 <postponed> (Wait until next OpenJDK security release) - - openjdk-10 <removed> (low) - - openjdk-11 <unfixed> (low) + - openjdk-8 <undetermined> + - openjdk-11 <undetermined> CVE-2018-12437 (LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ...) - libtomcrypt 1.18.2-1 (low; bug #901626) [stretch] - libtomcrypt <no-dsa> (Minor issue) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0cac8ecd0382bfe906538dcd58fa0dafb10b6ab1 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0cac8ecd0382bfe906538dcd58fa0dafb10b6ab1 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits