[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-1494{2,4}/gitlab

Salvatore Bonaccorso carnil at debian.org
Tue Aug 13 20:13:00 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9dbab13a by Salvatore Bonaccorso at 2019-08-13T19:12:33Z
Add Debian bug reference for CVE-2019-1494{2,4}/gitlab

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -96,7 +96,7 @@ CVE-2019-14945 (The ultimate-member plugin before 2.0.54 for WordPress has XSS.
 	NOT-FOR-US: ultimate-member plugin for WordPress
 CVE-2019-14944 [Multiple Command-Line Flag Injection Vulnerabilities]
 	RESERVED
-	- gitlab <unfixed>
+	- gitlab <unfixed> (bug #934708)
 	NOTE: https://about.gitlab.com/2019/08/12/critical-security-release-gitlab-12-dot-1-dot-6-released/
 CVE-2019-14943 [Insecure Authentication Methods Disabled for Grafana By Default]
 	RESERVED
@@ -104,7 +104,7 @@ CVE-2019-14943 [Insecure Authentication Methods Disabled for Grafana By Default]
 	NOTE: https://about.gitlab.com/2019/08/12/critical-security-release-gitlab-12-dot-1-dot-6-released/
 CVE-2019-14942 [Insecure Cookie Handling on GitLab Pages]
 	RESERVED
-	- gitlab <unfixed>
+	- gitlab <unfixed> (bug #934708)
 	NOTE: https://about.gitlab.com/2019/08/12/critical-security-release-gitlab-12-dot-1-dot-6-released/
 CVE-2019-14941
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9dbab13a18592827aa78c25cf95078c5ac8a3c29

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9dbab13a18592827aa78c25cf95078c5ac8a3c29
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190813/b7cf183e/attachment.html>


More information about the debian-security-tracker-commits mailing list