57060a7f9ee2adbf001f892942b8540b9b4cb88d to f2212a50219ee0ca7dc7e866d55f794fe1bc1d44 · Debian Security Tracker / security-tracker

Commits on Source 2

Add CVE-2018-2067{6,7}/twitter-bootstrap · d6f6339d

Salvatore Bonaccorso authored Jan 12, 2019

Further analysis showed that src:twitter-boostrap is as well affected by
the CVE-2018-20676 and CVE-2018-20677 issues. The code cannot be
compared easily as 2.x and 3.x diverged a lot but the issue seem present
in the 2.x series.

Thanks: Xavier Guimard <yadd@debian.org>

d6f6339d

Update information for CVE-2018-1404{0,2}/twitter-bootstrap · f2212a50

Salvatore Bonaccorso authored Jan 12, 2019

Further analysis showed that src:twitter-boostrap is as well affected by
the CVE-2018-20676 and CVE-2018-20677 issues. The code cannot be
compared easily as 2.x and 3.x diverged a lot but the issue seem present
in the 2.x series.

Wrong conclusion was reached initialy while investigating
src:twitter-bootstrap itself for these two issues.

Thanks: Xavier Guimard <yadd@debian.org>

f2212a50