[Git][security-tracker-team/security-tracker][master] libarchive n/a
Moritz Muehlenhoff
jmm at debian.org
Tue Apr 23 10:08:07 BST 2019
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ea484be4 by Moritz Muehlenhoff at 2019-04-23T09:07:31Z
libarchive n/a
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,7 +11,9 @@ CVE-2019-11465
CVE-2019-11464
RESERVED
CVE-2019-11463 (A memory leak in archive_read_format_zip_cleanup in archive_read_suppo ...)
- TODO: check
+ - libarchive <not-affected> (Vulnerable code not present)
+ NOTE: Introduced in https://github.com/libarchive/libarchive/commit/121035c83e18b70d3128e9ac966109ebedb7e516
+ NOTE: Fix: https://github.com/libarchive/libarchive/commit/ba641f73f3d758d9032b3f0e5597a9c6e593a505
CVE-2019-11462
RESERVED
CVE-2019-11461 (An issue was discovered in GNOME Nautilus 3.30 prior to 3.30.6 and 3.3 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea484be4170b36da89bec294a5d2c1b299560535
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/ea484be4170b36da89bec294a5d2c1b299560535
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190423/4f52d9ac/attachment.html>
More information about the debian-security-tracker-commits
mailing list