Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cc35000e by Thorsten Alteholz at 2019-05-16T11:40:53Z
follow security team with no-dsa for CVE-2019-12098 in Jessie
- - - - -
d36c430a by Thorsten Alteholz at 2019-05-16T11:48:26Z
follow security team with no-dsa for CVE-2019-10131 in Jessie
- - - - -
bacfdff8 by Thorsten Alteholz at 2019-05-16T11:49:49Z
set no-dsa for CVE-2019-11470 in Jessie
- - - - -
e721f6f9 by Thorsten Alteholz at 2019-05-16T11:53:07Z
follow security team with no-dsa for CVE-2019-10050 in Jessie
- - - - -
7e749098 by Thorsten Alteholz at 2019-05-16T11:53:46Z
follow security team with no-dsa for CVE-2019-10053 in Jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -86,6 +86,7 @@ CVE-2019-12099 (In PHP-Fusion 9.03.00, edit_profile.php
allows remote authentica
CVE-2019-12098 (In the client side of Heimdal before 7.6.0, failure to verify
anonymou ...)
- heimdal <unfixed> (bug #929064)
[stretch] - heimdal <no-dsa> (Minor issue)
+ [jessie] - heimdal <no-dsa> (Minor issue)
NOTE: Fixed by:
https://github.com/heimdal/heimdal/commit/2f7f3d9960aa6ea21358bdf3687cee5149aa35cf
(7.6.0)
NOTE: Introduced by:
https://github.com/heimdal/heimdal/commit/a1ef548600c5bb51cf52a9a9ea12676506ede19f
(1.4.0)
CVE-2019-12097
@@ -1515,6 +1516,7 @@ CVE-2019-11470 (The cineon parsing component in
ImageMagick 7.0.8-26 Q16 allows
- imagemagick <unfixed> (low; bug #927830)
[buster] - imagemagick <ignored> (Minor issue)
[stretch] - imagemagick <ignored> (Minor issue)
+ [jessie] - imagemagick <no-dsa> (Minor issue)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1472
NOTE:
https://github.com/ImageMagick/ImageMagick6/commit/a0473b29add9521ffd4c74f6f623b418811762b0
CVE-2018-20822 (LibSass 3.5.4 allows attackers to cause a denial-of-service
(uncontrol ...)
@@ -4720,6 +4722,7 @@ CVE-2019-10131 (An off-by-one read vulnerability was
discovered in ImageMagick b
[experimental] - imagemagick 8:6.9.10.2+dfsg-1
- imagemagick 8:6.9.10.2+dfsg-2
[stretch] - imagemagick <no-dsa> (Minor issue)
+ [jessie] - imagemagick <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1704762
NOTE:
https://github.com/ImageMagick/ImageMagick/commit/cb1214c124e1bd61f7dd551b94a794864861592e
NOTE:
https://github.com/ImageMagick/ImageMagick6/commit/7ccc28ee4c777d915f95919ac3bcf8adf93037a7
@@ -4951,6 +4954,7 @@ CVE-2019-10054
CVE-2019-10053 (An issue was discovered in Suricata 4.1.x before 4.1.4. If the
input o ...)
- suricata 1:4.1.4-1
[stretch] - suricata <no-dsa> (Minor issue)
+ [jessie] - suricata <no-dsa> (Minor issue)
NOTE: https://redmine.openinfosecfoundation.org/issues/2883
NOTE:
https://github.com/OISF/suricata/commit/51790d3824bc381e24aaeef20338dd6b8bd4e453
CVE-2019-10052
@@ -4960,6 +4964,7 @@ CVE-2019-10051
CVE-2019-10050 (A buffer over-read issue was discovered in Suricata 4.1.x
before 4.1.4 ...)
- suricata 1:4.1.4-1
[stretch] - suricata <no-dsa> (Minor issue)
+ [jessie] - suricata <no-dsa> (Minor issue)
NOTE: https://redmine.openinfosecfoundation.org/issues/2884
NOTE:
https://github.com/OISF/suricata/commit/4609d5c80acda9adf02f8fb9a6aa8238495bfa13
CVE-2019-10049
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/fb3fb841a0ecb2cb0371fbb87f68c343ed04a15d...7e74909834f65e1722b0c2477eb25b3a5951ed91
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/fb3fb841a0ecb2cb0371fbb87f68c343ed04a15d...7e74909834f65e1722b0c2477eb25b3a5951ed91
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
