Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: a865e050 by Salvatore Bonaccorso at 2018-03-10T06:57:12+01:00 Add CVE-2018-7998/vips - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -12,7 +12,9 @@ CVE-2018-7999 (In libgraphite2 in graphite2 1.3.11, a NULL pointer dereference . NOTE: https://github.com/silnrsi/graphite/commit/db132b4731a9b4c9534144ba3a18e65b390e9ff6 NOTE: https://github.com/silnrsi/graphite/issues/22 CVE-2018-7998 (In libvips before 8.6.3, a NULL function pointer dereference ...) - TODO: check + - vips <unfixed> + NOTE: https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5 + NOTE: https://github.com/jcupitt/libvips/issues/893 CVE-2018-7997 (Eramba e1.0.6.033 has Reflected XSS on the Error page of the CSV file ...) TODO: check CVE-2018-7996 (Eramba e1.0.6.033 has Stored XSS on the tooltip box via the ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a865e050618b39141e4ef3c91c4cda1f9fdba87c --- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a865e050618b39141e4ef3c91c4cda1f9fdba87c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits