[Git][security-tracker-team/security-tracker][master] Mark fixed version for various libssh2 issues via unstable

Salvatore Bonaccorso carnil at debian.org
Wed Apr 3 07:40:53 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
be426efa by Salvatore Bonaccorso at 2019-04-03T06:40:09Z
Mark fixed version for various libssh2 issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16641,55 +16641,55 @@ CVE-2019-3864
 	RESERVED
 CVE-2019-3863 (A flaw was found in libssh2 before 1.8.1. A server could send a multip ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3863.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3863.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3862 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3862.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3862.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3861 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3861.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3861.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3860 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3860.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3860.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3859 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3859.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3859.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3858 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 when ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3858.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3858.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3857 (An integer overflow flaw which could lead to an out of bounds write wa ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3857.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3857.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3856 (An integer overflow flaw, which could lead to an out of bounds write,  ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3856.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3856.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3855 (An integer overflow flaw which could lead to an out of bounds write wa ...)
 	{DLA-1730-1}
-	- libssh2 <unfixed> (bug #924965)
+	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3855.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3855.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be426efa9e3c01b792290641f3d797b190634b47

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/be426efa9e3c01b792290641f3d797b190634b47
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190403/dfd0ef4e/attachment.html>

More information about the debian-security-tracker-commits mailing list