[Git][security-tracker-team/security-tracker][master] Add CVE-2019-5020/yara
Salvatore Bonaccorso
carnil at debian.org
Sun Aug 4 15:24:48 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
58de1b06 by Salvatore Bonaccorso at 2019-08-04T14:24:17Z
Add CVE-2019-5020/yara
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26697,7 +26697,11 @@ CVE-2019-5022
CVE-2019-5021 (Versions of the Official Alpine Linux Docker images (since v3.3) conta ...)
NOT-FOR-US: Official Alpine Linux Docker images
CVE-2019-5020 (An exploitable denial of service vulnerability exists in the object lo ...)
- TODO: check
+ - yara 3.9.0-1
+ NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0781
+ NOTE: https://github.com/VirusTotal/yara/issues/1023
+ NOTE: https://github.com/VirusTotal/yara/commit/1ecb0e66431bf5c5b4c2fdf622be969eb5f4a7cc
+ NOTE: https://github.com/VirusTotal/yara/commit/a3784d3855029bd0ad24071e72746cc0c31b8cba
CVE-2019-5019 (A heap-based overflow vulnerability exists in the PowerPoint document ...)
NOT-FOR-US: Rainbow PDF Office Server Document Converter
CVE-2019-5018 (An exploitable use after free vulnerability exists in the window funct ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58de1b063ddf6955414bc4bfdd458d4813dd6ff3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58de1b063ddf6955414bc4bfdd458d4813dd6ff3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190804/e70bb5f9/attachment.html>
More information about the debian-security-tracker-commits
mailing list