Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5acd27d6 by Salvatore Bonaccorso at 2018-06-20T21:12:48+02:00
Adjust delimiter
- - - - -
4dfa5292 by Salvatore Bonaccorso at 2018-06-20T21:28:32+02:00
Add bug reference for liblnk and mark as no-dsa
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1190,13 +1190,16 @@ CVE-2018-12099 (Grafana before 5.2.0-beta1 has XSS
vulnerabilities in dashboard
- grafana <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/grafana/grafana/pull/11813
CVE-2018-12098 (The liblnk_data_block_read function in liblnk_data_block.c in
liblnk ...)
- - liblnk <unfixed>
+ - liblnk <unfixed> (bug #901962)
+ [stretch] - liblnk <no-dsa> (Minor issue)
NOTE: http://seclists.org/fulldisclosure/2018/Jun/33
CVE-2018-12097 (The liblnk_location_information_read_data function in ...)
- - liblnk <unfixed>
+ - liblnk <unfixed> (bug #901962)
+ [stretch] - liblnk <no-dsa> (Minor issue)
NOTE: http://seclists.org/fulldisclosure/2018/Jun/33
CVE-2018-12096 (The liblnk_data_string_get_utf8_string_size function in ...)
- - liblnk <unfixed>
+ - liblnk <unfixed> (bug #901962)
+ [stretch] - liblnk <no-dsa> (Minor issue)
NOTE: http://seclists.org/fulldisclosure/2018/Jun/33
CVE-2018-12095 (A Reflected Cross-Site Scripting web vulnerability has been
discovered ...)
NOT-FOR-US: OEcms
=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -55,7 +55,7 @@ libvncserver (Markus Koschany)
mariadb-10.0 (Emilio Pozuelo)
--
mercurial
-..
+--
ming (Hugo Lefeuvre)
NOTE: 20180529: wip, currently working on it with upstream. Lots of fuzzing
noise,
NOTE: many duplicate issues. I'm currently working on the next upload, which
will fix
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/c486978790257c3b03be16e4fb7bcfd634206615...4dfa52923e55fc4bb271ef5ef4438d7e3a9fda40
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/c486978790257c3b03be16e4fb7bcfd634206615...4dfa52923e55fc4bb271ef5ef4438d7e3a9fda40
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
