Update status for CVE-2018-25018

author: Salvatore Bonaccorso <carnil@debian.org> 2021-12-08 21:05:23 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-12-08 21:05:23 +0100
commit: 1bdc60c4557449d13975e0cf0a54d7356589a844 (patch)
tree: c64310205b035a4d994be2949a645544357a73f4 /data/CVE/list.2018
parent: e20bb6276168c22d9c3e55dc4e27ceb5570175c1 (diff)
1 files changed, 1 insertions, 3 deletions
diff --git a/data/CVE/list.2018 b/data/CVE/list.2018
index 077e53de9e..77fedf90d7 100644
--- a/data/CVE/list.2018
+++ b/data/CVE/list.2018
@@ -4,9 +4,7 @@ CVE-2018-25020 (The BPF subsystem in the Linux kernel before 4.17 mishandles sit
 CVE-2018-25019 (The LearnDash LMS WordPress plugin before 2.5.4 does not have any auth ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2018-25018 (UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write durin ...)
-	- unrar-nonfree <unfixed> (bug #990541)
-	[bullseye] - unrar-nonfree <no-dsa> (Non-free not supported)
-	[buster] - unrar-nonfree <no-dsa> (Non-free not supported)
+	- unrar-nonfree 1:5.6.6-1 (bug #990541)
 	[stretch] - unrar-nonfree <no-dsa> (Non-free not supported)
 	NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=9845
 	NOTE: https://github.com/google/oss-fuzz-vulns/blob/main/vulns/unrar/OSV-2018-204.yaml
author	Salvatore Bonaccorso <carnil@debian.org>	2021-12-08 21:05:23 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-12-08 21:05:23 +0100
commit	1bdc60c4557449d13975e0cf0a54d7356589a844 (patch)
tree	c64310205b035a4d994be2949a645544357a73f4 /data/CVE/list.2018
parent	e20bb6276168c22d9c3e55dc4e27ceb5570175c1 (diff)