[Git][security-tracker-team/security-tracker][master] Add CVE-2018-20969/patch

Salvatore Bonaccorso carnil at debian.org
Fri Aug 16 09:14:33 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
084a81ec by Salvatore Bonaccorso at 2019-08-16T08:14:00Z
Add CVE-2018-20969/patch

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -71,7 +71,8 @@ CVE-2018-20971
 CVE-2018-20970
 	RESERVED
 CVE-2018-20969 (do_ed_script in pch.c in GNU patch through 2.7.6 does not block string ...)
-	TODO: check
+	- patch 2.7.6-5
+	NOTE: https://git.savannah.gnu.org/cgit/patch.git/commit/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0
 CVE-2017-18548
 	RESERVED
 CVE-2017-18547


=====================================
data/DSA/list
=====================================
@@ -41,7 +41,7 @@
 	[stretch] - subversion 1.9.5-1+deb9u4
 	[buster] - subversion 1.10.4-1+deb10u1
 [27 Jul 2019] DSA-4489-1 patch - security update
-	{CVE-2019-13636 CVE-2019-13638}
+	{CVE-2018-20969 CVE-2019-13636 CVE-2019-13638}
 	[stretch] - patch 2.7.5-1+deb9u2
 	[buster] - patch 2.7.6-3+deb10u1
 [25 Jul 2019] DSA-4488-1 exim4 - security update



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/084a81ec99453d56e33e374c4e3f6283e04961c5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/084a81ec99453d56e33e374c4e3f6283e04961c5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190816/2dedba15/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list