Skip to content
GitLab
Explore
Sign in
Register
Commits on Source (3)
mark CVE-2016-10739 as no-dsa for jessie
· 24b21792
Thorsten Alteholz
authored
Jan 22, 2019
24b21792
mark twitter-bootstrap CVEs as no-dsa for Jessie
· 8906bfe8
Thorsten Alteholz
authored
Jan 22, 2019
8906bfe8
add drupal7
· 77c3ddc9
Thorsten Alteholz
authored
Jan 22, 2019
77c3ddc9
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
77c3ddc9
...
...
@@ -6,6 +6,7 @@ CVE-2019-6501 [scsi-generic: possible OOB access while handling inquiry request]
CVE-2016-10739 (In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo ...)
- glibc <unfixed> (bug #920047)
[stretch] - glibc <no-dsa> (Minor issue)
[jessie] - glibc <no-dsa> (Minor issue)
- eglibc <removed>
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1347549
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=20018
...
...
@@ -1906,6 +1907,7 @@ CVE-2019-5721 (In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. Thi
CVE-2018-20677 (In Bootstrap before 3.4.0, XSS is possible in the affix configuration ...)
- twitter-bootstrap <unfixed>
[stretch] - twitter-bootstrap <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap <no-dsa> (Minor issue)
- twitter-bootstrap3 3.4.0+dfsg-1
[stretch] - twitter-bootstrap3 <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap3 <no-dsa> (Minor issue)
...
...
@@ -1917,6 +1919,7 @@ CVE-2018-20677 (In Bootstrap before 3.4.0, XSS is possible in the affix configur
CVE-2018-20676 (In Bootstrap before 3.4.0, XSS is possible in the tooltip data-viewport ...)
- twitter-bootstrap <unfixed>
[stretch] - twitter-bootstrap <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap <no-dsa> (Minor issue)
- twitter-bootstrap3 3.4.0+dfsg-1
[stretch] - twitter-bootstrap3 <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap3 <no-dsa> (Minor issue)
...
...
@@ -30788,6 +30791,7 @@ CVE-2018-14043 (mstdlib (aka the M Standard Library for C) 1.2.0 has incorrect f
CVE-2018-14042 (In Bootstrap before 4.1.2, XSS is possible in the data-container ...)
- twitter-bootstrap <unfixed>
[stretch] - twitter-bootstrap <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap <no-dsa> (Minor issue)
- twitter-bootstrap3 3.4.0+dfsg-1 (low; bug #907414)
[stretch] - twitter-bootstrap3 <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap3 <not-affected> (Vulnerable code not present)
...
...
@@ -30814,6 +30818,7 @@ CVE-2018-14040 (In Bootstrap before 4.1.2, XSS is possible in the collapse data-
{DLA-1479-1}
- twitter-bootstrap <unfixed>
[stretch] - twitter-bootstrap <no-dsa> (Minor issue)
[jessie] - twitter-bootstrap <no-dsa> (Minor issue)
- twitter-bootstrap3 3.4.0+dfsg-1 (low; bug #907414)
[stretch] - twitter-bootstrap3 <no-dsa> (Minor issue)
NOTE: https://blog.getbootstrap.com/2018/07/12/bootstrap-4-1-2/
data/dla-needed.txt
View file @
77c3ddc9
...
...
@@ -13,6 +13,8 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues
cairo
NOTE: 20190109: No fix available yet. (ola)
--
drupal7
--
enigmail
NOTE: 20181113: depends on gnupg2 updates, see 87r2fqnja0.fsf@curie.anarc.at (anarcat)
--
...
...
