[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat Apr 13 21:10:26 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f56e0708 by security tracker role at 2019-04-13T20:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2019-11229 (models/repo_mirror.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 m ...)
+	TODO: check
+CVE-2019-11228 (repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 does no ...)
+	TODO: check
 CVE-2019-11227
 	RESERVED
 CVE-2019-11226
@@ -18105,55 +18109,55 @@ CVE-2019-3865
 CVE-2019-3864
 	RESERVED
 CVE-2019-3863 (A flaw was found in libssh2 before 1.8.1. A server could send a multip ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3863.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3863.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3862 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3862.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3862.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3861 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3861.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3861.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3860 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3860.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3860.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3859 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 in t ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3859.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3859.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3858 (An out of bounds read flaw was discovered in libssh2 before 1.8.1 when ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://libssh2.org/CVE-2019-3858.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3858.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/316
 CVE-2019-3857 (An integer overflow flaw which could lead to an out of bounds write wa ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3857.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3857.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3856 (An integer overflow flaw, which could lead to an out of bounds write,  ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3856.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3856.patch
 	NOTE: https://github.com/libssh2/libssh2/pull/315
 CVE-2019-3855 (An integer overflow flaw which could lead to an out of bounds write wa ...)
-	{DLA-1730-1}
+	{DSA-4431-1 DLA-1730-1}
 	- libssh2 1.8.0-2.1 (bug #924965)
 	NOTE: https://www.libssh2.org/CVE-2019-3855.html
 	NOTE: Patch: https://libssh2.org/1.8.0-CVE/CVE-2019-3855.patch



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f56e07085bb5a1a28e77844a11050c53083cde55

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f56e07085bb5a1a28e77844a11050c53083cde55
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190413/4fde9ea2/attachment.html>

More information about the debian-security-tracker-commits mailing list