AVG-611 - log back

AVG-611 created at 25 Sep 2019 19:31:50
Packages
+ unzip
Issues
+ CVE-2018-1000035
Status
+ Vulnerable
Severity
+ Low
Affected
+ 6.0-13
Fixed
Ticket
Advisory qualified
+ Yes
References
Notes
+ Still no fix upstream. We do use FORTIFY_SOURCE=2 on our builds and that works as a "workaround" since it kills the app. Perhaps we should downgrade the severity and set the impact to DoS?