[Git][security-tracker-team/security-tracker][master] Add two CVE's for domoticz, itp'ed, #899058
Salvatore Bonaccorso
carnil at debian.org
Mon Apr 1 17:03:26 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
68ef5850 by Salvatore Bonaccorso at 2019-04-01T16:01:33Z
Add two CVE's for domoticz, itp'ed, #899058
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,5 +1,5 @@
CVE-2019-10678 (Domoticz before 4.10579 neglects to categorize \n and \r as insecure a ...)
- TODO: check
+ - domoticz <itp> (bug #899058)
CVE-2019-10677
RESERVED
CVE-2019-10676
@@ -25,7 +25,7 @@ CVE-2019-10666
CVE-2019-10665
RESERVED
CVE-2019-10664 (Domoticz before 4.10578 allows SQL Injection via the idx parameter in ...)
- TODO: check
+ - domoticz <itp> (bug #899058)
CVE-2019-10672 (treeRead in hdf/btree.c in libmysofa before 0.7 does not properly vali ...)
- libmysofa <unfixed> (bug #926125)
NOTE: https://github.com/hoene/libmysofa/commit/d39a171e9c6a1c44dbdf43f9db6c3fbd887e38c1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/68ef5850e5861f7eb2e69f649a5cb7a65a9e0399
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/68ef5850e5861f7eb2e69f649a5cb7a65a9e0399
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190401/1af3a03c/attachment.html>
More information about the debian-security-tracker-commits
mailing list