[Git][security-tracker-team/security-tracker][master] Add CVE-2011-1830/ekiga

Tue Apr 23 06:03:47 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e95557c8 by Salvatore Bonaccorso at 2019-04-23T05:03:11Z
Add CVE-2011-1830/ekiga

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -263286,7 +263286,9 @@ CVE-2011-1831 (utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does n
 	{DSA-2382-1}
 	- ecryptfs-utils 92-1
 CVE-2011-1830 (Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga ...)
-	TODO: check
+	- ekiga <not-affected> (Vulnerable code not in a released version)
+	NOTE: Fixed by: https://gitlab.gnome.org/GNOME/ekiga/commit/02654fc949722a78d41fcffac8687d73d8574647 (EKIGA_3_3_0)
+	NOTE: Introduced by: https://gitlab.gnome.org/GNOME/ekiga/commit/87d3a0824b373a3d16e9198540174ce16e4ab3db (EKIGA_3_3_0)
 CVE-2011-1829 (APT before 0.8.15.2 does not properly validate inline GPG signatures,  ...)
 	- apt 0.8.15.2
 	[squeeze] - apt <not-affected> (Vulnerable code not present)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e95557c8f7049194ad0e8900f15f4341eaf791fd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e95557c8f7049194ad0e8900f15f4341eaf791fd
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190423/cb94b843/attachment.html>
