Bug 1139095 - (CVE-2018-18837) VUL-0: CVE-2018-18837: netdata: HTTP Header Injection
(CVE-2018-18837)
VUL-0: CVE-2018-18837: netdata: HTTP Header Injection
Status: IN_PROGRESS
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Other
Leap 15.1
Other Other
: P3 - Medium : Normal (vote)
: ---
Assigned To: Martin Herkt
Security Team bot
https://smash.suse.de/issue/235365/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2019-06-24 09:52 UTC by Alexander Bergmann
Modified: 2021-12-20 20:32 UTC (History)
2 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Alexander Bergmann 2019-06-24 09:55:04 UTC
@Martin: As we have no official maintainer listed I've assigned this bug to you as you submitted most of the past updates.
Comment 2 OBSbugzilla Bot 2021-03-14 21:10:11 UTC
This is an autogenerated message for OBS integration:
This bug (1139095) was mentioned in
https://build.opensuse.org/request/show/878984 15.2 / netdata
Comment 3 Swamp Workflow Management 2021-05-01 19:17:34 UTC
openSUSE-SU-2021:0647-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1139094,1139095,1139098
CVE References: CVE-2018-18836,CVE-2018-18837,CVE-2018-18838,CVE-2018-18839
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    netdata-1.29.3-lp152.4.3.1
Comment 4 Swamp Workflow Management 2021-05-15 19:15:42 UTC
openSUSE-SU-2021:0730-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1139094,1139095,1139098
CVE References: CVE-2018-18836,CVE-2018-18837,CVE-2018-18838,CVE-2018-18839
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP2 (src):    netdata-1.29.3-bp152.4.3.1
Comment 5 OBSbugzilla Bot 2021-11-24 09:40:10 UTC
This is an autogenerated message for OBS integration:
This bug (1139095) was mentioned in
https://build.opensuse.org/request/show/933394 Backports:SLE-15-SP3 / netdata
Comment 6 Swamp Workflow Management 2021-12-20 20:32:26 UTC
openSUSE-SU-2021:1603-1: An update that fixes four vulnerabilities is now available.

Category: security (moderate)
Bug References: 1139094,1139095,1139098
CVE References: CVE-2018-18836,CVE-2018-18837,CVE-2018-18838,CVE-2018-18839
JIRA References: 
Sources used:
openSUSE Backports SLE-15-SP3 (src):    netdata-1.31.0-bp153.2.3.1