[Git][security-tracker-team/security-tracker][master] 2 commits: add atftp

Fri Apr 26 19:32:19 BST 2019


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
290e6d36 by Thorsten Alteholz at 2019-04-26T18:29:24Z
add atftp

- - - - -
dea71ce2 by Thorsten Alteholz at 2019-04-26T18:29:24Z
mark CVE-2019-5427 as no-dsa for Jessie

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -15726,6 +15726,7 @@ CVE-2019-5428
 	REJECTED
 CVE-2019-5427 (c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack  ...)
 	- c3p0 <unfixed> (bug #927936)
+	[jessie] - c3p0 <no-dsa> (Minor issue)
 	NOTE: https://hackerone.com/reports/509315
 	NOTE: Fixed by: https://github.com/swaldman/c3p0/commit/f38f27635c384806c2a9d6500d80183d9f09d78b
 CVE-2019-5426 (In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated ...)


=====================================
data/dla-needed.txt
=====================================
@@ -12,6 +12,8 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues
 --
 389-ds-base
 --
+atftp
+--
 axis
 --
 bind9 (Thorsten Alteholz)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8a03d8fde3bbc28e54e79bd644f519fa5de4fcec...dea71ce274102a1485f03e9bb849e29070ba220f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8a03d8fde3bbc28e54e79bd644f519fa5de4fcec...dea71ce274102a1485f03e9bb849e29070ba220f
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190426/cec6bda1/attachment-0001.html>
