[Git][security-tracker-team/security-tracker][master] Add CVE-2019-19241/linux

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3b905ce9 by Salvatore Bonaccorso at 2019-12-17T20:18:57Z
Add CVE-2019-19241/linux

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5840,7 +5840,13 @@ CVE-2019-19242 (SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by th
 	[jessie] - sqlite3 <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/sqlite/sqlite/commit/57f7ece78410a8aae86aa4625fb7556897db384c
 CVE-2019-19241 (In the Linux kernel before 5.4.2, the io_uring feature leads to reques ...)
-	TODO: check
+	- linux 5.3.15-1
+	[buster] - linux <not-affected> (Vulnerable code introduced later)
+	[stretch] - linux <not-affected> (Vulnerable code introduced later)
+	[jessie] - linux <not-affected> (Vulnerable code introduced later)
+	NOTE: https://bugs.chromium.org/p/project-zero/issues/detail?id=1975
+	NOTE: https://git.kernel.org/linus/181e448d8709e517c9c7b523fcd209f24eb38ca7
+	NOTE: https://git.kernel.org/linus/d69e07793f891524c6bbf1e75b9ae69db4450953
 CVE-2019-19240 (Embedthis GoAhead before 5.0.1 mishandles redirected HTTP requests wit ...)
 	NOT-FOR-US: Embedthis GoAhead
 CVE-2019-19239



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3b905ce91fd6712a93c691f63fb52ce5c370ebae

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3b905ce91fd6712a93c691f63fb52ce5c370ebae
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191217/2f07f049/attachment-0001.html>