[Git][security-tracker-team/security-tracker][master] openjdk-11 fixed

Fri, 25 Jan 2019 06:32:53 -0800 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
0cac8ecd by Moritz Muehlenhoff at 2019-01-25T14:31:52Z
openjdk-11 fixed
mark one sunec issue as undetermined, unclear whether that actually affects
  OpenJDK

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10953,7 +10953,7 @@ CVE-2019-2423 (Vulnerability in the PeopleSoft 
Enterprise PeopleTools component
 CVE-2019-2422 (Vulnerability in the Java SE component of Oracle Java SE ...)
        - openjdk-7 <unfixed>
        - openjdk-8 <unfixed>
-       - openjdk-11 <unfixed>
+       - openjdk-11 11.0.2+9-1
 CVE-2019-2421 (Vulnerability in the PeopleSoft Enterprise HCM eProfile Manager 
...)
        NOT-FOR-US: Oracle
 CVE-2019-2420 (Vulnerability in the MySQL Server component of Oracle MySQL ...)
@@ -35523,10 +35523,8 @@ CVE-2018-12439 (MatrixSSL through 3.9.5 Open allows a 
memory-cache side-channel
        - matrixssl <removed>
 CVE-2018-12438 (The Elliptic Curve Cryptography library (aka sunec or 
libsunec) allows ...)
        - openjdk-7 <not-affected> (Didn't include/build sunec, see #750400)
-       - openjdk-8 <unfixed> (low)
-       [stretch] - openjdk-8 <postponed> (Wait until next OpenJDK security 
release)
-       - openjdk-10 <removed> (low)
-       - openjdk-11 <unfixed> (low)
+       - openjdk-8 <undetermined>
+       - openjdk-11 <undetermined>
 CVE-2018-12437 (LibTomCrypt through 1.18.1 allows a memory-cache side-channel 
attack on ...)
        - libtomcrypt 1.18.2-1 (low; bug #901626)
        [stretch] - libtomcrypt <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0cac8ecd0382bfe906538dcd58fa0dafb10b6ab1

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0cac8ecd0382bfe906538dcd58fa0dafb10b6ab1
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to