[Git][security-tracker-team/security-tracker][master] CVE-2019-800{4,5,6,7}/file fixed in unstable

Fri, 01 Mar 2019 01:13:33 -0800 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
62a17386 by Salvatore Bonaccorso at 2019-03-01T09:12:30Z
CVE-2019-800{4,5,6,7}/file fixed in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1411,11 +1411,11 @@ CVE-2019-8908 (An issue was discovered in WTCMS 1.0. It 
allows remote attackers
        NOT-FOR-US: WTCMS
 CVE-2019-8907 (do_core_note in readelf.c in libmagic.a in file 5.35 allows 
remote ...)
        {DLA-1698-1}
-       - file <unfixed> (bug #922968)
+       - file 1:5.35-3 (bug #922968)
        NOTE: https://bugs.astron.com/view.php?id=65
        NOTE: 
https://github.com/file/file/commit/d65781527c8134a1202b2649695d48d5701ac60b
 CVE-2019-8906 (do_core_note in readelf.c in libmagic.a in file 5.35 has an ...)
-       - file <unfixed> (bug #922969)
+       - file 1:5.35-3 (bug #922969)
        [stretch] - file <not-affected> (vulnerable code introduced later)
        [jessie] - file <not-affected> (vulnerable code introduced later)
        NOTE: https://bugs.astron.com/view.php?id=64
@@ -1423,11 +1423,11 @@ CVE-2019-8906 (do_core_note in readelf.c in libmagic.a 
in file 5.35 has an ...)
        NOTE: Fixed by: 
https://github.com/file/file/commit/2858eaf99f6cc5aae129bcbf1e24ad160240185f 
(FILE5_36)
 CVE-2019-8905 (do_core_note in readelf.c in libmagic.a in file 5.35 has a 
stack-based ...)
        {DLA-1698-1}
-       - file <unfixed> (bug #922968)
+       - file 1:5.35-3 (bug #922968)
        NOTE: https://bugs.astron.com/view.php?id=63
        NOTE: 
https://github.com/file/file/commit/d65781527c8134a1202b2649695d48d5701ac60b
 CVE-2019-8904 (do_bid_note in readelf.c in libmagic.a in file 5.35 has a 
stack-based ...)
-       - file <unfixed> (bug #922967)
+       - file 1:5.35-3 (bug #922967)
        [stretch] - file <not-affected> (vulnerable code introduced later)
        [jessie] - file <not-affected> (vulnerable code introduced later)
        NOTE: https://bugs.astron.com/view.php?id=62



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/62a17386dcf5962fafcb49383a65c58de36c1631

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/62a17386dcf5962fafcb49383a65c58de36c1631
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to