[Git][security-tracker-team/security-tracker][master] Add further note on CVE-2018-20764

Salvatore Bonaccorso carnil at debian.org
Sun Feb 17 07:30:44 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2535930b by Salvatore Bonaccorso at 2019-02-17T07:26:43Z
Add further note on CVE-2018-20764

The issue is likely in src:tcpcrypt given the tracking in Red Hat itself
for fedora and epel-7.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1538,6 +1538,7 @@ CVE-2019-7635 (SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0
 	[stretch] - libsdl2 <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=4498
 CVE-2018-20764 (A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for ...)
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1676393
 	NOTE: https://community.helpsystems.com/knowledge-base/fox-technologies/hotfix/515/
 	TODO: check, if it affects src:tcpcrypt, as it is about tcpcrypt as used in BoKS
 CVE-2019-7634



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2535930b4dbf2c07cd486cca6433b8f946a85f24

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2535930b4dbf2c07cd486cca6433b8f946a85f24
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190217/3e934d4f/attachment.html>


More information about the debian-security-tracker-commits mailing list