[Git][security-tracker-team/security-tracker][master] Add temporary entry for gpg-key2ps shell injection vulnerability

Salvatore Bonaccorso carnil at debian.org
Tue Apr 30 20:11:51 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
96773e37 by Salvatore Bonaccorso at 2019-04-30T19:09:10Z
Add temporary entry for gpg-key2ps shell injection vulnerability

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2019-XXXX [gpg-key2ps: Shell injection vulnerability in UIDs rendering]
+	- signing-party <unfixed> (bug #928256)
+	[stretch] - signing-party <no-dsa> (Will be fixed via point release)
+	NOTE: https://salsa.debian.org/signing-party-team/signing-party/commit/cd69b6c0426a6160ef3de03fce9c7f112166d5a8
 CVE-2019-11599 (The coredump implementation in the Linux kernel before 5.0.10 does not ...)
 	- linux <unfixed>
 	NOTE: https://marc.info/?l=linux-mm&m=155355419911404&w=2



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96773e37318a60e63911a99269a19565d98ee31b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96773e37318a60e63911a99269a19565d98ee31b
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190430/0ef5d032/attachment.html>


More information about the debian-security-tracker-commits mailing list