Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0af01a3a by Salvatore Bonaccorso at 2019-12-07T14:21:49Z
Add CVE-2019-119{30,34,35}/hhvm
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -27076,9 +27076,9 @@ CVE-2019-11937 (In Mcrouter prior to v0.41.0, a large
struct input provided to t
NOT-FOR-US: mcrouter
NOTE: https://github.com/facebook/mcrouter/releases
CVE-2019-11936 (Various APC functions accept keys containing null bytes as
input, lead ...)
- TODO: check
+ - hhvm <removed>
CVE-2019-11935 (Insufficient boundary checks when processing a string in
mb_ereg_repla ...)
- TODO: check
+ - hhvm <removed>
CVE-2019-11934 (Improper handling of close_notify alerts can result in an
out-of-bound ...)
TODO: check
CVE-2019-11933 (A heap buffer overflow bug in libpl_droidsonroids_gif before
1.2.19, a ...)
@@ -27088,7 +27088,7 @@ CVE-2019-11932 (A double free vulnerability in the
DDGifSlurp function in decodi
CVE-2019-11931 (A stack-based buffer overflow could be triggered in WhatsApp
by sendin ...)
NOT-FOR-US: WhatsApp
CVE-2019-11930 (An invalid free in mb_detect_order can cause the application
to crash ...)
- TODO: check
+ - hhvm <removed>
CVE-2019-11929 (Insufficient boundary checks when formatting numbers in
number_format ...)
- hhvm <removed>
CVE-2019-11928
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0af01a3a5ecb16b0d1ce8bd43bbb69ef1a29162b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0af01a3a5ecb16b0d1ce8bd43bbb69ef1a29162b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
