[Git][security-tracker-team/security-tracker][master] 2 commits: Correct version for phpmyadmin in DLA-2413-1

Sun, 25 Oct 2020 04:57:03 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
e38bb9d4 by Salvatore Bonaccorso at 2020-10-25T12:54:50+01:00
Correct version for phpmyadmin in DLA-2413-1

There was a missing epoch fo the used version.

- - - - -
cec565a3 by Salvatore Bonaccorso at 2020-10-25T12:55:39+01:00
Remove no-dsa tagged entry which got an update in DLA-2413-1

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61580,7 +61580,6 @@ CVE-2019-19618
 CVE-2019-19617 (phpMyAdmin before 4.9.2 does not escape certain Git 
information, relat ...)
        {DLA-2024-1}
        - phpmyadmin 4:4.9.2+dfsg1-1
-       [stretch] - phpmyadmin <no-dsa> (Minor issue)
        NOTE: 
https://github.com/phpmyadmin/phpmyadmin/commit/1119de642b136d20e810bb20f545069a01dd7cc9
 CVE-2019-19616 (An Insecure Direct Object Reference (IDOR) vulnerability in 
the Xtivia ...)
        NOT-FOR-US: Microsoft Dynamics NAV


=====================================
data/DLA/list
=====================================
@@ -1,6 +1,6 @@
 [25 Oct 2020] DLA-2413-1 phpmyadmin - security update
        {CVE-2019-19617 CVE-2020-26934 CVE-2020-26935}
-       [stretch] - phpmyadmin 4.6.6-4+deb9u2
+       [stretch] - phpmyadmin 4:4.6.6-4+deb9u2
 [23 Oct 2020] DLA-2412-1 openjdk-8 - security update
        {CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 
CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803}
        [stretch] - openjdk-8 8u272-b10-0+deb9u1



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/de9cde14f96ccb0be6be31115541e9f48215f55b...cec565a3a35a2a3f5c6d255183763e6e1c7fef35

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/de9cde14f96ccb0be6be31115541e9f48215f55b...cec565a3a35a2a3f5c6d255183763e6e1c7fef35
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to