[Git][security-tracker-team/security-tracker][master] CVE-2019-7313/buildbot fixed
Mattia Rizzolo
mattia at debian.org
Mon Feb 4 09:16:18 GMT 2019
Mattia Rizzolo pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b53a7927 by Mattia Rizzolo at 2019-02-04T09:15:58Z
CVE-2019-7313/buildbot fixed
Signed-off-by: Mattia Rizzolo <mattia at debian.org>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12,7 +12,7 @@ CVE-2019-7314 (liblivemedia in Live555 before 2019.02.03 mishandles the terminat
- liblivemedia <unfixed>
NOTE: http://lists.live555.com/pipermail/live-devel/2019-February/021143.html
CVE-2019-7313 (www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the ...)
- - buildbot <unfixed> (bug #921271)
+ - buildbot 2.0.0-1 (bug #921271)
[stretch] - buildbot <not-affected> (Vulnerable code introduced in 0.9.0)
[jessie] - buildbot <not-affected> (Vulnerable code introduced in 0.9.0)
NOTE: https://github.com/buildbot/buildbot/wiki/CRLF-injection-in-Buildbot-login-and-logout-redirect-code
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b53a79276b56de15751b03d74d4f02955d41353b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b53a79276b56de15751b03d74d4f02955d41353b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190204/1d6c3cd9/attachment.html>
More information about the debian-security-tracker-commits
mailing list