[Git][security-tracker-team/security-tracker][master] Add CVE-2020-28241/libmaxminddb

Fri, 06 Nov 2020 00:15:15 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1b8650ec by Salvatore Bonaccorso at 2020-11-06T09:14:35+01:00
Add CVE-2020-28241/libmaxminddb

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -49,7 +49,9 @@ CVE-2020-28243
 CVE-2020-28242 (An issue was discovered in Asterisk Open Source 13.x before 
13.37.1, 1 ...)
        TODO: check
 CVE-2020-28241 (libmaxminddb before 1.4.3 has a heap-based buffer over-read in 
dump_en ...)
-       TODO: check
+       - libmaxminddb <unfixed>
+       NOTE: https://github.com/maxmind/libmaxminddb/issues/236
+       NOTE: https://github.com/maxmind/libmaxminddb/pull/237
 CVE-2020-28240
        RESERVED
 CVE-2020-28239



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1b8650eced577098fd894d04c8abdb6ccc425669

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1b8650eced577098fd894d04c8abdb6ccc425669
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to