Roberto C. Sánchez pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dfa6f603 by Roberto C. Sánchez at 2020-03-22T14:27:31-04:00
LTS: triage CVE-2019-10784/phppgadmin for jessie, follow stretch/buster decision
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -51784,6 +51784,7 @@ CVE-2019-10784 (phppgadmin through 7.12.1 allows
sensitive actions to be perform
- phppgadmin <unfixed> (bug #953945)
[buster] - phppgadmin <no-dsa> (Minor issue)
[stretch] - phppgadmin <no-dsa> (Minor issue)
+ [jessie] - phppgadmin <no-dsa> (Minor issue)
NOTE: https://snyk.io/vuln/SNYK-PHP-PHPPGADMINPHPPGADMIN-543885
NOTE: https://github.com/phppgadmin/phppgadmin/issues/94
CVE-2019-10783 (All versions including 0.0.4 of lsof npm module are vulnerable
to Comm ...)
=====================================
data/dla-needed.txt
=====================================
@@ -56,9 +56,6 @@ opendmarc (Thorsten Alteholz)
--
php5 (Thorsten Alteholz)
--
-phppgadmin
- NOTE: 20200316: CVE-2019-10784: upstream bug opened, no fix yet; wide usage
---
qtbase-opensource-src (Mike Gabriel)
NOTE: 20200224: No upstream fix available, yet. (sunweaver)
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfa6f603b2ce4a430a45e0a09be2d7d1446b7a7f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfa6f603b2ce4a430a45e0a09be2d7d1446b7a7f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
