[Git][security-tracker-team/security-tracker][master] gnucobol: no-dsa, bug filed, track old source package

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d5173322 by Moritz Muehlenhoff at 2019-08-04T20:42:04Z
gnucobol: no-dsa, bug filed, track old source package

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -228,7 +228,10 @@ CVE-2019-14543
 CVE-2019-14542
 	RESERVED
 CVE-2019-14541 (GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_program_id ...)
-	- gnucobol <unfixed>
+	- gnucobol <unfixed> (bug #933884)
+	[buster] - gnucobol <no-dsa> (Minor issue)
+	- opencobol <removed>
+	[stretch] - opencobol <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/open-cobol/bugs/584/
 CVE-2019-14540
 	RESERVED
@@ -261,7 +264,10 @@ CVE-2019-14530
 CVE-2019-14529 (OpenEMR before 5.0.2 allows SQL Injection in interface/forms/eye_mag/s ...)
 	NOT-FOR-US: OpenEMR
 CVE-2019-14528 (GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/ ...)
-	- gnucobol <unfixed>
+	- gnucobol <unfixed> (bug #933884)
+	[buster] - gnucobol <no-dsa> (Minor issue)
+	- opencobol <removed>
+	[stretch] - opencobol <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/open-cobol/bugs/583/
 CVE-2019-14527
 	RESERVED
@@ -354,7 +360,10 @@ CVE-2019-14488
 CVE-2019-14487
 	RESERVED
 CVE-2019-14486 (GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in cobc/field.c ...)
-	- gnucobol <unfixed>
+	- gnucobol <unfixed> (bug #933884)
+	[buster] - gnucobol <no-dsa> (Minor issue)
+	- opencobol <removed>
+	[stretch] - opencobol <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/open-cobol/bugs/582/
 CVE-2019-14485
 	RESERVED
@@ -391,7 +400,10 @@ CVE-2019-14470
 CVE-2019-14469
 	RESERVED
 CVE-2019-14468 (GnuCOBOL 2.2 has a buffer overflow in cb_push_op in cobc/field.c via c ...)
-	- gnucobol <unfixed>
+	- gnucobol <unfixed> (bug #933884)
+	[buster] - gnucobol <no-dsa> (Minor issue)
+	- opencobol <removed>
+	[stretch] - opencobol <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/open-cobol/bugs/581/
 CVE-2019-14467
 	RESERVED
@@ -87639,7 +87651,7 @@ CVE-2018-2599 (Vulnerability in the Java SE, Java SE Embedded, JRockit component
 	[wheezy] - openjdk-6 <end-of-life>
 CVE-2018-2598 (Vulnerability in the MySQL Workbench component of Oracle MySQL (subcom ...)
 	- mysql-workbench 8.0.17+dfsg-1 (bug #904112)
-	[stretch] - mysql-workbench <no-dsa> (Exact details undisclosed, but marginal CVSS score)
+	[stretch] - mysql-workbench <ignored> (Exact details undisclosed, but marginal CVSS score)
 	[jessie] - mysql-workbench <postponed> (Exact details undisclosed, but marginal CVSS score)
 CVE-2018-2597 (Vulnerability in the Oracle Hospitality Cruise Dining Room Management  ...)
 	NOT-FOR-US: Oracle



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5173322a76b1d71e305198af82c38a9dd4f60f8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d5173322a76b1d71e305198af82c38a9dd4f60f8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190804/d05368bf/attachment.html>