[Git][security-tracker-team/security-tracker][master] Track upstream commits for CVE-2019-19844

Salvatore Bonaccorso carnil at debian.org
Wed Dec 18 09:43:28 GMT 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
de697264 by Salvatore Bonaccorso at 2019-12-18T09:42:59Z
Track upstream commits for CVE-2019-19844

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -507,6 +507,10 @@ CVE-2019-19845 (In Joomla! before 3.9.14, a missing access check in framework fi
 CVE-2019-19844 [Potential account hijack via password reset form]
 	- python-django <unfixed> (bug #946937)
 	NOTE: https://www.djangoproject.com/weblog/2019/dec/18/security-releases/
+	NOTE: https://github.com/django/django/commit/5b1fbcef7a8bec991ebe7b2a18b5d5a95d72cb70 (master)
+	NOTE: https://github.com/django/django/commit/302a4ff1e8b1c798aab97673909c7a3dfda42c26 (3.0.x branch)
+	NOTE: https://github.com/django/django/commit/4d334bea06cac63dc1272abcec545b85136cca0e (2.2.x branch)
+	NOTE: https://github.com/django/django/commit/f4cff43bf921fcea6a29b726eb66767f67753fa2 (1.11.x branch)
 CVE-2019-19843
 	RESERVED
 CVE-2019-19842



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/de697264d44f8ea077b8cbe46f319299078a3ad7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/de697264d44f8ea077b8cbe46f319299078a3ad7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191218/d5dd1c03/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list