[Git][security-tracker-team/security-tracker][master] Add CVE-2019-3843/systemd

Salvatore Bonaccorso carnil at debian.org
Sat Apr 27 21:29:19 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5d4f06c8 by Salvatore Bonaccorso at 2019-04-27T20:26:38Z
Add CVE-2019-3843/systemd

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19062,7 +19062,16 @@ CVE-2019-3844 (It was discovered that a systemd service that uses DynamicUser pr
 	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1771
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1814596
 CVE-2019-3843 (It was discovered that a systemd service that uses DynamicUser propert ...)
-	TODO: check
+	- systemd <unfixed>
+	NOTE: https://github.com/systemd/systemd/commit/3c27973b13724ede05a06a5d346a569794cda433
+	NOTE: https://github.com/systemd/systemd/commit/f69567cbe26d09eac9d387c0be0fc32c65a83ada
+	NOTE: https://github.com/systemd/systemd/commit/9d880b70ba5c6ca83c82952f4c90e86e56c7b70c
+	NOTE: https://github.com/systemd/systemd/commit/7445db6eb70e8d5989f481d0c5a08ace7047ae5b
+	NOTE: https://github.com/systemd/systemd/commit/62aa29247c3d74bcec0607c347f2be23cd90675d
+	NOTE: https://github.com/systemd/systemd/commit/bf65b7e0c9fc215897b676ab9a7c9d1c688143ba
+	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1771
+	NOTE: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1814596
+	NOTE: https://github.com/systemd/systemd-stable/pull/54 (backport for v241-stable)
 CVE-2019-3842 (In systemd before v242-rc4, it was discovered that pam_systemd does no ...)
 	{DSA-4428-1 DLA-1762-1}
 	- systemd 241-3



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5d4f06c8ac496bbc3556a728b6bdaad8dfb698c2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5d4f06c8ac496bbc3556a728b6bdaad8dfb698c2
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190427/407c0045/attachment.html>

More information about the debian-security-tracker-commits mailing list