[Git][security-tracker-team/security-tracker][master] Demote severity for CVE-2019-19391/luajit
Salvatore Bonaccorso
carnil at debian.org
Tue Dec 3 22:23:02 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
744c4410 by Salvatore Bonaccorso at 2019-12-03T22:21:03Z
Demote severity for CVE-2019-19391/luajit
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -744,8 +744,10 @@ CVE-2019-19393
CVE-2019-19392
RESERVED
CVE-2019-19391 (In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other pro ...)
- - luajit <unfixed> (bug #946053)
+ - luajit <unfixed> (bug #946053; unimportant)
NOTE: https://github.com/LuaJIT/LuaJIT/pull/526
+ NOTE: Negligible security impact. The debug library is unsafe per se and one is
+ NOTE: not supposed to release an application with the debug library.
CVE-2019-19390
RESERVED
CVE-2019-19389
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/744c44106fc0459b246a15d8a342f467d0c5dea0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/744c44106fc0459b246a15d8a342f467d0c5dea0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191203/15fffacd/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list