[Git][security-tracker-team/security-tracker][master] Add CVE-2019-13241/flightcrew
Salvatore Bonaccorso
carnil at debian.org
Thu Jul 4 22:51:00 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c407bad5 by Salvatore Bonaccorso at 2019-07-04T21:50:30Z
Add CVE-2019-13241/flightcrew
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -67,7 +67,8 @@ CVE-2019-13243 (IrfanView 4.52 has a User Mode Write AV starting at image0040000
CVE-2019-13242 (IrfanView 4.52 has a User Mode Write AV starting at image00400000+0x00 ...)
NOT-FOR-US: IrfanView
CVE-2019-13241 (FlightCrew v0.9.2 and older are vulnerable to a directory traversal, a ...)
- TODO: check
+ - flightcrew <unfixed>
+ NOTE: https://github.com/Sigil-Ebook/flightcrew/issues/52
CVE-2019-13240
RESERVED
CVE-2019-13239 (inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c407bad5a203abb25113f945145f2e2891816fb7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c407bad5a203abb25113f945145f2e2891816fb7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190704/1211f182/attachment.html>
More information about the debian-security-tracker-commits
mailing list