[Git][security-tracker-team/security-tracker][master] Add CVE-2019-3814/dovecot

Tue Feb 5 14:07:04 GMT 2019

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
65334675 by Salvatore Bonaccorso at 2019-02-05T14:06:48Z
Add CVE-2019-3814/dovecot

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8016,8 +8016,10 @@ CVE-2019-3815 (A memory leak was discovered in the backport of fixes for ...)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1666690
 	NOTE: For stable it affected DSA-4367-1 and was corrected in DSA-4367-2
 	NOTE: specifically the backport of the fix for CVE-2018-16864.
-CVE-2019-3814
+CVE-2019-3814 [Suitable client certificate can be used to login as other user]
 	RESERVED
+	- dovecot <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2019/02/05/1
 CVE-2019-3813 (Spice, versions 0.5.2 through 0.14.1, are vulnerable to an ...)
 	{DSA-4375-1 DLA-1649-1}
 	- spice 0.14.0-1.3 (bug #920762)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/65334675cc13685a4340f7b0c564cbba74c4ad28

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/65334675cc13685a4340f7b0c564cbba74c4ad28
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190205/c4014c08/attachment.html>
