[Git][security-tracker-team/security-tracker][master] Two CVEs CVE-2019-5870 and CVE-2019-13720 are associated as well with qtwebengine-opensource-src

Thu Dec 19 12:03:35 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
16987dc6 by Salvatore Bonaccorso at 2019-12-19T12:03:19Z
Two CVEs CVE-2019-5870 and CVE-2019-13720 are associated as well with qtwebengine-opensource-src

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -24889,6 +24889,7 @@ CVE-2019-13721 (Use after free in PDFium in Google Chrome prior to 78.0.3904.87
 CVE-2019-13720 (Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allo ...)
 	{DSA-4562-1}
 	- chromium 78.0.3904.87-1
+	- qtwebengine-opensource-src 5.12.5+dfsg-4
 CVE-2019-13719 (Incorrect security UI in full screen mode in Google Chrome prior to 78 ...)
 	{DSA-4562-1}
 	- chromium 78.0.3904.87-1
@@ -48045,6 +48046,7 @@ CVE-2019-5871 (Heap buffer overflow in Skia in Google Chrome prior to 77.0.3865.
 CVE-2019-5870 (Use after free in media in Google Chrome prior to 77.0.3865.75 allowed ...)
 	{DSA-4562-1}
 	- chromium 78.0.3904.87-1
+	- qtwebengine-opensource-src 5.12.5+dfsg-4
 CVE-2019-5869 (Use after free in Blink in Google Chrome prior to 76.0.3809.132 allowe ...)
 	{DSA-4562-1}
 	- chromium 78.0.3904.87-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/16987dc66c645b2e574f86a48098626931b87489

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/16987dc66c645b2e574f86a48098626931b87489
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191219/6c018311/attachment.html>
