<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<h3>

Salvatore Bonaccorso pushed to branch master

at <a href="https://salsa.debian.org/security-tracker-team/security-tracker">Debian Security Tracker / security-tracker</a>

</h3>

<h4>

Commits:

</h4>

<ul>

<li>

<strong><a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b9ac44a45dd85df171d1ae4d0463f6ec577c3ef">5b9ac44a</a></strong>

<div>

<span>by Salvatore Bonaccorso</span>

<i>at 2020-02-15T14:28:24+01:00</i>

</div>

<pre class="commit-message" style="white-space: pre-wrap; margin: 0;">Update status for CVE-2019-19343

While the issue is affecting both Undertow and remoting, cf.

https://bugzilla.redhat.com/show_bug.cgi?id=1780445#c10 on Red Hat's

side to mitigate the issue only a fix was added to remoting.

The CVE is quite specific for this memory leak in combination with

remoting, thus mark the severity as unimportant, beeing negligible for

Debian itself. Still, the issue remains unresolved for undertow, but it

does not appear to be interest in a fix.

</pre>

</li>

</ul>

<h4>1 changed file:</h4>

<ul>

<li class="file-stats">

<a href="#4716ef5aa8f2742228ba3b3633215c8b808565e3">

data/CVE/list

</a>

</li>

</ul>

<h4>Changes:</h4>

<li id="4716ef5aa8f2742228ba3b3633215c8b808565e3">

<a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b9ac44a45dd85df171d1ae4d0463f6ec577c3ef#4716ef5aa8f2742228ba3b3633215c8b808565e3"><strong>data/CVE/list</strong></a>

<hr>

No preview for this file type

<br>

</li>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #777;">

—

<br>

<a href="https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b9ac44a45dd85df171d1ae4d0463f6ec577c3ef">View it on GitLab</a>.

<br>

You're receiving this email because of your account on salsa.debian.org.

If you'd like to receive fewer emails, you can

adjust your notification settings.

<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Commit","url":"https://salsa.debian.org/security-tracker-team/security-tracker/commit/5b9ac44a45dd85df171d1ae4d0463f6ec577c3ef"}}</script>

</p>

</div>

</body>

</html>