[Git][security-tracker-team/security-tracker][master] Add four issues in GnuCOBOL for tracking

Salvatore Bonaccorso carnil at debian.org
Sun Aug 4 15:05:50 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b3ba9442 by Salvatore Bonaccorso at 2019-08-04T14:04:37Z
Add four issues in GnuCOBOL for tracking

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -228,7 +228,8 @@ CVE-2019-14543
 CVE-2019-14542
 	RESERVED
 CVE-2019-14541 (GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_program_id ...)
-	TODO: check
+	- gnucobol <unfixed>
+	NOTE: https://sourceforge.net/p/open-cobol/bugs/584/
 CVE-2019-14540
 	RESERVED
 CVE-2019-14539
@@ -260,7 +261,8 @@ CVE-2019-14530
 CVE-2019-14529 (OpenEMR before 5.0.2 allows SQL Injection in interface/forms/eye_mag/s ...)
 	NOT-FOR-US: OpenEMR
 CVE-2019-14528 (GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/ ...)
-	TODO: check
+	- gnucobol <unfixed>
+	NOTE: https://sourceforge.net/p/open-cobol/bugs/583/
 CVE-2019-14527
 	RESERVED
 CVE-2019-14526
@@ -352,7 +354,8 @@ CVE-2019-14488
 CVE-2019-14487
 	RESERVED
 CVE-2019-14486 (GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in cobc/field.c ...)
-	TODO: check
+	- gnucobol <unfixed>
+	NOTE: https://sourceforge.net/p/open-cobol/bugs/582/
 CVE-2019-14485
 	RESERVED
 CVE-2019-14484
@@ -388,7 +391,8 @@ CVE-2019-14470
 CVE-2019-14469
 	RESERVED
 CVE-2019-14468 (GnuCOBOL 2.2 has a buffer overflow in cb_push_op in cobc/field.c via c ...)
-	TODO: check
+	- gnucobol <unfixed>
+	NOTE: https://sourceforge.net/p/open-cobol/bugs/581/
 CVE-2019-14467
 	RESERVED
 CVE-2019-14466



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3ba94426eb2bbb8b648bd0c7c129ec527c8b2e7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3ba94426eb2bbb8b648bd0c7c129ec527c8b2e7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190804/52f106c9/attachment.html>

More information about the debian-security-tracker-commits mailing list