Sebastien Delafond pushed to branch master at Debian Security Tracker / security-tracker
Commits: 22309732 by Sébastien Delafond at 2019-11-27T08:05:29Z Add and claim haproxy - - - - - 2 changed files: - data/CVE/list - data/dsa-needed.txt Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,7 @@ +CVE-2019-XXXX [CRLF injection when decoding from http/2 to http/1] + - haproxy 2.0.10-1 + NOTE: https://git.haproxy.org/?p=haproxy.git;a=commit;h=54f53ef7ce4102be596130b44c768d1818570344 + NOTE: https://git.haproxy.org/?p=haproxy.git;a=commit;h=146f53ae7e97dbfe496d0445c2802dd0a30b0878 CVE-2019-19308 RESERVED CVE-2019-19307 (An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6. ...) ===================================== data/dsa-needed.txt ===================================== @@ -27,6 +27,10 @@ glusterfs/oldstable -- graphicsmagick/oldstable -- +haproxy (seb) + 2019-11-25: maintainer proposed debdiff + 2019-11-27: CVE pending +-- intel-microcode (carnil) Followup for more support for other CPUs pending -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/22309732eadbbab6645e5fa2fe43c59164339a85 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/22309732eadbbab6645e5fa2fe43c59164339a85 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
