Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits: b0f40ae2 by Markus Koschany at 2018-09-02T19:54:21Z discount: Add link to fixing commit - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -9255,6 +9255,7 @@ CVE-2018-12496 CVE-2018-12495 (The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT ...) - discount 2.2.4-1 (bug #901912) NOTE: https://github.com/Orc/discount/issues/189#issuecomment-397541501 + NOTE: Fixed by https://github.com/Orc/discount/commit/b002a5a4db31e42dfb45451c059bc56941c17974 CVE-2018-12494 (An issue discovered in PublicCMS V4.0.20180210. There is a "Directory ...) NOT-FOR-US: PublicCMS CVE-2018-12493 (An issue discovered in PublicCMS V4.0.20180210. There is a "Directory ...) @@ -11904,10 +11905,12 @@ CVE-2018-11504 (The islist function in markdown.c in libmarkdown.a in DISCOUNT 2 - discount 2.2.4-1 (bug #901912) NOTE: https://github.com/Orc/discount/issues/189#issuecomment-392247798 NOTE: POC: https://github.com/fCorleone/fuzz_programs/blob/master/discount/issue3_testcase + NOTE: Fixed by https://github.com/Orc/discount/commit/b002a5a4db31e42dfb45451c059bc56941c17974 CVE-2018-11503 (The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT ...) - discount 2.2.4-1 (bug #901912) NOTE: https://github.com/Orc/discount/issues/189#issuecomment-392247798 NOTE: POC: https://github.com/fCorleone/fuzz_programs/blob/master/discount/issue2_testcase + NOTE: Fixed by https://github.com/Orc/discount/commit/b002a5a4db31e42dfb45451c059bc56941c17974 CVE-2018-11502 (An issue was discovered in the Moderator Log Notes plugin 1.1 for ...) NOT-FOR-US: MyBB plugin CVE-2018-11501 (PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via ...) @@ -12000,6 +12003,7 @@ CVE-2018-11468 (The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISC - discount 2.2.4-1 (bug #901912) NOTE: https://github.com/Orc/discount/issues/189 NOTE: POC: https://github.com/fCorleone/fuzz_programs/blob/master/discount/issue1_testcase + NOTE: Fixed by https://github.com/Orc/discount/commit/b002a5a4db31e42dfb45451c059bc56941c17974 CVE-2018-11467 RESERVED CVE-2018-11466 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0f40ae2ca171650caee3b3096e5f7500c54993f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0f40ae2ca171650caee3b3096e5f7500c54993f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits