Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d5173322 by Moritz Muehlenhoff at 2019-08-04T20:42:04Z
gnucobol: no-dsa, bug filed, track old source package
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -228,7 +228,10 @@ CVE-2019-14543
CVE-2019-14542
RESERVED
CVE-2019-14541 (GnuCOBOL 2.2 has a stack-based buffer overflow in
cb_encode_program_id ...)
- - gnucobol <unfixed>
+ - gnucobol <unfixed> (bug #933884)
+ [buster] - gnucobol <no-dsa> (Minor issue)
+ - opencobol <removed>
+ [stretch] - opencobol <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/open-cobol/bugs/584/
CVE-2019-14540
RESERVED
@@ -261,7 +264,10 @@ CVE-2019-14530
CVE-2019-14529 (OpenEMR before 5.0.2 allows SQL Injection in
interface/forms/eye_mag/s ...)
NOT-FOR-US: OpenEMR
CVE-2019-14528 (GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal
in cobc/ ...)
- - gnucobol <unfixed>
+ - gnucobol <unfixed> (bug #933884)
+ [buster] - gnucobol <no-dsa> (Minor issue)
+ - opencobol <removed>
+ [stretch] - opencobol <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/open-cobol/bugs/583/
CVE-2019-14527
RESERVED
@@ -354,7 +360,10 @@ CVE-2019-14488
CVE-2019-14487
RESERVED
CVE-2019-14486 (GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in
cobc/field.c ...)
- - gnucobol <unfixed>
+ - gnucobol <unfixed> (bug #933884)
+ [buster] - gnucobol <no-dsa> (Minor issue)
+ - opencobol <removed>
+ [stretch] - opencobol <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/open-cobol/bugs/582/
CVE-2019-14485
RESERVED
@@ -391,7 +400,10 @@ CVE-2019-14470
CVE-2019-14469
RESERVED
CVE-2019-14468 (GnuCOBOL 2.2 has a buffer overflow in cb_push_op in
cobc/field.c via c ...)
- - gnucobol <unfixed>
+ - gnucobol <unfixed> (bug #933884)
+ [buster] - gnucobol <no-dsa> (Minor issue)
+ - opencobol <removed>
+ [stretch] - opencobol <no-dsa> (Minor issue)
NOTE: https://sourceforge.net/p/open-cobol/bugs/581/
CVE-2019-14467
RESERVED
@@ -87639,7 +87651,7 @@ CVE-2018-2599 (Vulnerability in the Java SE, Java SE
Embedded, JRockit component
[wheezy] - openjdk-6 <end-of-life>
CVE-2018-2598 (Vulnerability in the MySQL Workbench component of Oracle MySQL
(subcom ...)
- mysql-workbench 8.0.17+dfsg-1 (bug #904112)
- [stretch] - mysql-workbench <no-dsa> (Exact details undisclosed, but
marginal CVSS score)
+ [stretch] - mysql-workbench <ignored> (Exact details undisclosed, but
marginal CVSS score)
[jessie] - mysql-workbench <postponed> (Exact details undisclosed, but
marginal CVSS score)
CVE-2018-2597 (Vulnerability in the Oracle Hospitality Cruise Dining Room
Management ...)
NOT-FOR-US: Oracle
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5173322a76b1d71e305198af82c38a9dd4f60f8
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5173322a76b1d71e305198af82c38a9dd4f60f8
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
