Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b1baac97 by Moritz Muehlenhoff at 2018-04-13T19:17:27+02:00
NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -486,7 +486,7 @@ CVE-2018-9864 (The WP Live Chat Support plugin before
8.0.06 for WordPress has s
CVE-2018-9863
RESERVED
CVE-2018-9862 (util.c in runV 1.0.0 for Docker mishandles a numeric username,
which ...)
- TODO: check
+ NOT-FOR-US: runV for Docker
CVE-2018-9861
RESERVED
CVE-2018-9860 (An issue was discovered in Botan 1.11.32 through 2.x before
2.6.0. An ...)
@@ -2342,8 +2342,8 @@ CVE-2018-7600 (Drupal before 7.58, 8.x before 8.3.9,
8.4.x before 8.4.6, and 8.5
CVE-2018-9057 (aws/resource_aws_iam_user_login_profile.go in the HashiCorp
Terraform ...)
NOT-FOR-US: HashiCorp Terraform Amazon Web Services
CVE-2018-9056 (Systems with microprocessors utilizing speculative execution
may allow ...)
+ NOTE: Hardware side channel attack
NOTE: http://www.cs.ucr.edu/~nael/pubs/asplos18.pdf
- TODO: check
CVE-2018-9055 (JasPer 2.0.14 allows denial of service via a reachable
assertion in the ...)
- jasper <removed> (unimportant)
NOTE: https://github.com/mdadams/jasper/issues/172
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b1baac97113df971face5bedf2cd8c51a0cd15c8
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b1baac97113df971face5bedf2cd8c51a0cd15c8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
