[Git][security-tracker-team/security-tracker][master] Add CVE-2019-1923{2,4}/sudo
Salvatore Bonaccorso
carnil at debian.org
Sun Dec 22 10:47:58 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
df0ba219 by Salvatore Bonaccorso at 2019-12-22T10:47:31Z
Add CVE-2019-1923{2,4}/sudo
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6238,11 +6238,17 @@ CVE-2019-19236
CVE-2019-19235 (AsLdrSrv.exe in ASUS ATK Package before V1.0.0061 (for Windows 10 note ...)
NOT-FOR-US: ASUS
CVE-2019-19234 (In Sudo through 1.8.29, the fact that a user has been blocked (e.g., b ...)
- TODO: check
+ - sudo <unfixed>
+ [buster] - sudo <no-dsa> (Minor issue)
+ [stretch] - sudo <no-dsa> (Minor issue)
+ NOTE: https://www.sudo.ws/devel.html#1.8.30b2
CVE-2019-19233
RESERVED
CVE-2019-19232 (In Sudo through 1.8.29, an attacker with access to a Runas ALL sudoer ...)
- TODO: check
+ - sudo <unfixed>
+ [buster] - sudo <no-dsa> (Minor issue)
+ [stretch] - sudo <no-dsa> (Minor issue)
+ NOTE: https://www.sudo.ws/devel.html#1.8.30b2
CVE-2019-19231 (An insecure file access vulnerability exists in CA Client Automation 1 ...)
NOT-FOR-US: CA Client Automation
CVE-2019-19230 (An unsafe deserialization vulnerability exists in CA Release Automatio ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/df0ba219fcc09d0aebeaff29bec6e8c417f44e83
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/df0ba219fcc09d0aebeaff29bec6e8c417f44e83
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191222/8e6633e2/attachment.html>
More information about the debian-security-tracker-commits
mailing list