Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: f04b9947 by Salvatore Bonaccorso at 2024-11-29T20:52:24+01:00 Add upstream tag information for commit for CVE-2017-16933 Dropping the comment about fixing CVE-2018-6533 as this is already covered in that CVE entry and in particular CVE-2017-1693 is specifically assigned for the unsafe use of chown(1). CVE-2018-6533 is the larger issue than CVE-2017-16933 and cover by the https://github.com/Icinga/icinga2/pull/5850 pull request upstream. - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -503040,8 +503040,7 @@ CVE-2017-16933 (etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a ch [stretch] - icinga2 <no-dsa> (Minor issue) [jessie] - icinga2 <no-dsa> (Minor issue) NOTE: https://github.com/Icinga/icinga2/issues/5793 - NOTE: Fix for this and CVE-2018-6533 in https://github.com/Icinga/icinga2/pull/5850 - NOTE: Specific commit: https://github.com/Icinga/icinga2/commit/5aafc7eda5c1b026a993fc2782fa84b8f3e8e052 + NOTE: Fixed by: https://github.com/Icinga/icinga2/commit/5aafc7eda5c1b026a993fc2782fa84b8f3e8e052 (v2.8.2) NOTE: CVE is for the unsafe use of chown(1) CVE-2016-10700 (auth_login.php in Cacti before 1.0.0 allows remote authenticated users ...) - cacti 0.8.8h+ds1-5 (bug #833420) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f04b994729dd8aafc0109d4ec4b48e56f1126da9 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f04b994729dd8aafc0109d4ec4b48e56f1126da9 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
