[Git][security-tracker-team/security-tracker][master] Add temporary entry for gpg-key2ps shell injection vulnerability
Salvatore Bonaccorso
carnil at debian.org
Tue Apr 30 20:11:51 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
96773e37 by Salvatore Bonaccorso at 2019-04-30T19:09:10Z
Add temporary entry for gpg-key2ps shell injection vulnerability
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2019-XXXX [gpg-key2ps: Shell injection vulnerability in UIDs rendering]
+ - signing-party <unfixed> (bug #928256)
+ [stretch] - signing-party <no-dsa> (Will be fixed via point release)
+ NOTE: https://salsa.debian.org/signing-party-team/signing-party/commit/cd69b6c0426a6160ef3de03fce9c7f112166d5a8
CVE-2019-11599 (The coredump implementation in the Linux kernel before 5.0.10 does not ...)
- linux <unfixed>
NOTE: https://marc.info/?l=linux-mm&m=155355419911404&w=2
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96773e37318a60e63911a99269a19565d98ee31b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/96773e37318a60e63911a99269a19565d98ee31b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190430/0ef5d032/attachment.html>
More information about the debian-security-tracker-commits
mailing list