[Git][security-tracker-team/security-tracker][master] Triage CVE-2019-1010238 in pango1.0 for Jessie LTS.

Chris Lamb lamby at debian.org
Fri Aug 9 09:15:15 BST 2019



Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bb6f8f16 by Chris Lamb at 2019-08-09T08:14:44Z
Triage CVE-2019-1010238 in pango1.0 for Jessie LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14363,6 +14363,7 @@ CVE-2019-1010239 (DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check fo
 CVE-2019-1010238 (Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact ...)
 	- pango1.0 1.42.4-7 (bug #933860)
 	[stretch] - pango1.0 <not-affected> (Vulnerable code introduced later)
+	[jessie] - pango1.0 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://gitlab.gnome.org/GNOME/pango/issues/342
 	NOTE: https://gitlab.gnome.org/GNOME/pango/commit/490f8979a260c16b1df055eab386345da18a2d54 (1.44)
 CVE-2019-1010237 (Ilias 5.3 before 5.3.12; 5.2 before 5.2.21 is affected by: Cross Site  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bb6f8f16cabfaeaddcc4251d47d183910f604d83

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bb6f8f16cabfaeaddcc4251d47d183910f604d83
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190809/5a94dc14/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list