[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-1010238/pango1.0 as not-affected for stretch

Salvatore Bonaccorso carnil at debian.org
Thu Aug 8 22:52:08 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
19ca7a00 by Salvatore Bonaccorso at 2019-08-08T21:50:54Z
Mark CVE-2019-1010238/pango1.0 as not-affected for stretch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14300,6 +14300,7 @@ CVE-2019-1010239 (DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check fo
 	NOTE: https://github.com/DaveGamble/cJSON/issues/315
 CVE-2019-1010238 (Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact ...)
 	- pango1.0 1.42.4-7 (bug #933860)
+	[stretch] - pango1.0 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://gitlab.gnome.org/GNOME/pango/issues/342
 	NOTE: https://gitlab.gnome.org/GNOME/pango/commit/490f8979a260c16b1df055eab386345da18a2d54 (1.44)
 CVE-2019-1010237 (Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/19ca7a00c131250c8f2775d862237c7cc88ea143

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/19ca7a00c131250c8f2775d862237c7cc88ea143
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190808/14ecd865/attachment.html>


More information about the debian-security-tracker-commits mailing list