[Git][security-tracker-team/security-tracker][master] Add CVE-2018-20969/patch
Salvatore Bonaccorso
carnil at debian.org
Fri Aug 16 09:14:33 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
084a81ec by Salvatore Bonaccorso at 2019-08-16T08:14:00Z
Add CVE-2018-20969/patch
- - - - -
2 changed files:
- data/CVE/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -71,7 +71,8 @@ CVE-2018-20971
CVE-2018-20970
RESERVED
CVE-2018-20969 (do_ed_script in pch.c in GNU patch through 2.7.6 does not block string ...)
- TODO: check
+ - patch 2.7.6-5
+ NOTE: https://git.savannah.gnu.org/cgit/patch.git/commit/?id=3fcd042d26d70856e826a42b5f93dc4854d80bf0
CVE-2017-18548
RESERVED
CVE-2017-18547
=====================================
data/DSA/list
=====================================
@@ -41,7 +41,7 @@
[stretch] - subversion 1.9.5-1+deb9u4
[buster] - subversion 1.10.4-1+deb10u1
[27 Jul 2019] DSA-4489-1 patch - security update
- {CVE-2019-13636 CVE-2019-13638}
+ {CVE-2018-20969 CVE-2019-13636 CVE-2019-13638}
[stretch] - patch 2.7.5-1+deb9u2
[buster] - patch 2.7.6-3+deb10u1
[25 Jul 2019] DSA-4488-1 exim4 - security update
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/084a81ec99453d56e33e374c4e3f6283e04961c5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/084a81ec99453d56e33e374c4e3f6283e04961c5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190816/2dedba15/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list