Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b227c2f7 by Salvatore Bonaccorso at 2019-07-17T06:14:47Z
Add CVE-2019-12854/squid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2886,8 +2886,12 @@ CVE-2019-12855 (In words.protocols.jabber.xmlstream in
Twisted through 19.2.1, X
[jessie] - twisted <no-dsa> (Minor issue)
NOTE: https://github.com/twisted/twisted/pull/1147
NOTE: https://twistedmatrix.com/trac/ticket/9561
-CVE-2019-12854
+CVE-2019-12854 [denial of service in cachemgr.cgi]
RESERVED
+ - squid <unfixed>
+ - squid3 <not-affected> (Vulnerable code not present; Vulnerable code
only in 4.x series)
+ NOTE: http://www.squid-cache.org/Advisories/SQUID-2019_1.txt
+ NOTE:
http://www.squid-cache.org/Versions/v4/changesets/squid-4-2981a957716c61ff7e21eee1d7d6eb5a237e466d.patch
CVE-2019-12853
RESERVED
CVE-2019-12852 (An SSRF attack was possible on a JetBrains YouTrack server.
The issue ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b227c2f77cd84ba70830c0a811b54bf4e80c4d82
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b227c2f77cd84ba70830c0a811b54bf4e80c4d82
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
