Adrian Bunk pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
8590d26b by Adrian Bunk at 2021-02-03T20:15:53+02:00
CVE-2020-9497 and CVE-2020-9498 are fixed in 1.3.0-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -70261,13 +70261,13 @@ CVE-2020-9499 (Some Dahua products have buffer
overflow vulnerabilities. After t
NOT-FOR-US: Dahua
CVE-2020-9498 (Apache Guacamole 1.1.0 and older may mishandle pointers
involved inpro ...)
{DLA-2435-1}
- - guacamole-server <unfixed> (bug #964195)
+ - guacamole-server 1.3.0-1 (bug #964195)
NOTE: https://www.openwall.com/lists/oss-security/2020/07/02/3
NOTE: https://research.checkpoint.com/2020/apache-guacamole-rce/
NOTE: Fixed by
https://github.com/apache/guacamole-server/commit/a0e11dc81727528224d28466903454e1cb0266bb
CVE-2020-9497 (Apache Guacamole 1.1.0 and older do not properly validate
datareceived ...)
{DLA-2435-1}
- - guacamole-server <unfixed> (bug #964195)
+ - guacamole-server 1.3.0-1 (bug #964195)
NOTE: https://www.openwall.com/lists/oss-security/2020/07/02/2
NOTE: https://research.checkpoint.com/2020/apache-guacamole-rce/
NOTE: Fixed by
https://github.com/apache/guacamole-server/commit/a0e11dc81727528224d28466903454e1cb0266bb
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8590d26bf9497ba9eee5337cf7a9536104f53856
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8590d26bf9497ba9eee5337cf7a9536104f53856
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
