Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
de697264 by Salvatore Bonaccorso at 2019-12-18T09:42:59Z
Track upstream commits for CVE-2019-19844
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -507,6 +507,10 @@ CVE-2019-19845 (In Joomla! before 3.9.14, a missing access
check in framework fi
CVE-2019-19844 [Potential account hijack via password reset form]
- python-django <unfixed> (bug #946937)
NOTE:
https://www.djangoproject.com/weblog/2019/dec/18/security-releases/
+ NOTE:
https://github.com/django/django/commit/5b1fbcef7a8bec991ebe7b2a18b5d5a95d72cb70
(master)
+ NOTE:
https://github.com/django/django/commit/302a4ff1e8b1c798aab97673909c7a3dfda42c26
(3.0.x branch)
+ NOTE:
https://github.com/django/django/commit/4d334bea06cac63dc1272abcec545b85136cca0e
(2.2.x branch)
+ NOTE:
https://github.com/django/django/commit/f4cff43bf921fcea6a29b726eb66767f67753fa2
(1.11.x branch)
CVE-2019-19843
RESERVED
CVE-2019-19842
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/de697264d44f8ea077b8cbe46f319299078a3ad7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/de697264d44f8ea077b8cbe46f319299078a3ad7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
