[Git][security-tracker-team/security-tracker][master] 2 commits: add atftp
Thorsten Alteholz
alteholz at debian.org
Fri Apr 26 19:32:19 BST 2019
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
290e6d36 by Thorsten Alteholz at 2019-04-26T18:29:24Z
add atftp
- - - - -
dea71ce2 by Thorsten Alteholz at 2019-04-26T18:29:24Z
mark CVE-2019-5427 as no-dsa for Jessie
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -15726,6 +15726,7 @@ CVE-2019-5428
REJECTED
CVE-2019-5427 (c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack ...)
- c3p0 <unfixed> (bug #927936)
+ [jessie] - c3p0 <no-dsa> (Minor issue)
NOTE: https://hackerone.com/reports/509315
NOTE: Fixed by: https://github.com/swaldman/c3p0/commit/f38f27635c384806c2a9d6500d80183d9f09d78b
CVE-2019-5426 (In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated ...)
=====================================
data/dla-needed.txt
=====================================
@@ -12,6 +12,8 @@ https://wiki.debian.org/LTS/Development#Triage_new_security_issues
--
389-ds-base
--
+atftp
+--
axis
--
bind9 (Thorsten Alteholz)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8a03d8fde3bbc28e54e79bd644f519fa5de4fcec...dea71ce274102a1485f03e9bb849e29070ba220f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8a03d8fde3bbc28e54e79bd644f519fa5de4fcec...dea71ce274102a1485f03e9bb849e29070ba220f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190426/cec6bda1/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list