Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 7b7cccd4 by Salvatore Bonaccorso at 2019-02-06T20:53:35Z Remove no-dsa tagged entries which got an update - - - - - a0460427 by Salvatore Bonaccorso at 2019-02-06T21:04:20Z Mark CVE-2018-16888/systemd as no-dsa - - - - - 83383aee by Salvatore Bonaccorso at 2019-02-06T21:05:03Z Merge remote-tracking branch 'origin/master' - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -25995,6 +25995,7 @@ CVE-2018-16889 (Ceph does not properly sanitize encryption keys in debug logging NOTE: https://github.com/ceph/ceph/commit/ba55e2a96c9dfcc7aa2311431beaaa23cb05c30d CVE-2018-16888 (It was discovered systemd does not correctly check the content of ...) - systemd 237-1 + [stretch] - systemd <no-dsa> (Minor issue) [jessie] - systemd <no-dsa> (low priority because this is inherently a bug in the PID file logic) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1662867 NOTE: Upstream issue: https://github.com/systemd/systemd/issues/6632 @@ -136656,7 +136657,6 @@ CVE-2016-5699 (CRLF injection vulnerability in the HTTPConnection.putheader func {DLA-522-1} - python3.5 <not-affected> (Fixed with initial upload to Debian) - python3.4 3.4.4~rc1-1 - [jessie] - python3.4 <no-dsa> (Will be fixed via a point release) - python2.7 2.7.10~rc1-1 [jessie] - python2.7 2.7.9-2+deb8u1 NOTE: https://bugs.python.org/issue22928 @@ -137228,7 +137228,6 @@ CVE-2016-5636 (Integer overflow in the get_data function in zipimport.c in CPyth {DLA-522-1} - python3.5 3.5.2~rc1-1 - python3.4 <removed> - [jessie] - python3.4 <no-dsa> (Will be fixed via a point release) - python2.7 2.7.12~rc1-1 [jessie] - python2.7 2.7.9-2+deb8u1 NOTE: https://bugs.python.org/issue26171 @@ -153093,7 +153092,6 @@ CVE-2016-0772 (The smtplib library in CPython (aka Python) before 2.7.12, 3.x be {DLA-871-1 DLA-522-1} - python3.5 3.5.2~rc1-1 - python3.4 <removed> - [jessie] - python3.4 <no-dsa> (Will be fixed via a point release) - python3.2 <removed> - python2.7 2.7.12~rc1-1 [jessie] - python2.7 2.7.9-2+deb8u1 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/c298d18e5deae14f41ef87a2e7ea17490c47cec4...83383aee0c9e998ee21f12611d4fed3bc9eb35ff -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/c298d18e5deae14f41ef87a2e7ea17490c47cec4...83383aee0c9e998ee21f12611d4fed3bc9eb35ff You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits