On Wed, 09 Jan 2019 21:08:51 +0100 Salvatore Bonaccorso <car...@debian.org> wrote: > Source: systemd > Version: 204-1 > Severity: grave > Tags: security upstream > Justification: user security hole > Control: found -1 232-25+deb9u6 > Control: found -1 240-2 > > Hi, > > The following vulnerability was published for systemd. > > CVE-2018-16864[0]: > memory corruption > > If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry. > > For further information see: > > [0] https://security-tracker.debian.org/tracker/CVE-2018-16864 > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16864 > [1] https://www.openwall.com/lists/oss-security/2019/01/09/3
Should CVE-2018-16864, CVE-2018-16865 and CVE-2018-16866 be handled separately, i.e. do you plan to file separate bug reports? -- Why is it that all of the instruments seeking intelligent life in the universe are pointed away from Earth?
signature.asc
Description: OpenPGP digital signature
