[Git][security-tracker-team/security-tracker][master] Add CVE-2019-1136{5,6}/atftp issues

Salvatore Bonaccorso carnil at debian.org
Sat Apr 20 19:40:42 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1c5e6cde by Salvatore Bonaccorso at 2019-04-20T18:40:08Z
Add CVE-2019-1136{5,6}/atftp issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,11 @@
+CVE-2019-11366 [Concurrency issue denial of service]
+	- atftp <unfixed>
+	NOTE: https://pulsesecurity.co.nz/advisories/atftpd-multiple-vulnerabilities
+	NOTE: https://sourceforge.net/p/atftp/code/ci/382f76a90b44f81fec00e2f609a94def4a5d3580/
+CVE-2019-11365 [Error handler stack overflow]
+	- atftp <unfixed>
+	NOTE: https://pulsesecurity.co.nz/advisories/atftpd-multiple-vulnerabilities
+	NOTE: https://sourceforge.net/p/atftp/code/ci/abed7d245d8e8bdfeab24f9f7f55a52c3140f96b/
 CVE-2019-11360
 	RESERVED
 CVE-2019-11359 (Cross-site scripting (XSS) vulnerability in display.php in I, Libraria ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1c5e6cde7dd00e836676d0d4da95b6a358b1e06b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1c5e6cde7dd00e836676d0d4da95b6a358b1e06b
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190420/fd2ecd38/attachment.html>


More information about the debian-security-tracker-commits mailing list