[Git][security-tracker-team/security-tracker][master] Add CVE-2019-1019{0,1}/knot-resolver

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5f3feef1 by Salvatore Bonaccorso at 2019-07-13T22:38:59Z
Add CVE-2019-1019{0,1}/knot-resolver

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8589,10 +8589,16 @@ CVE-2019-10192 (A heap-buffer overflow vulnerability was found in the Redis hype
 	NOTE: https://github.com/antirez/redis/commit/9f13b2bd4967334b1701c6eccdf53760cb13f79e
 	NOTE: https://github.com/antirez/redis/commit/ef1833b3f9d02261617b757fd6ebe0ec3f1be507 (5.0.4)
 	NOTE: https://github.com/antirez/redis/commit/7f79849caa006f0d760b6c7e17f7796e3be92b4f (5.0.4)
-CVE-2019-10191
+CVE-2019-10191 [do not cache negative answer with forged QNAME+QTYPE]
 	RESERVED
-CVE-2019-10190
+	- knot-resolver <unfixed>
+	NOTE: https://www.knot-resolver.cz/2019-07-10-knot-resolver-4.1.0.html
+	NOTE: https://gitlab.labs.nic.cz/knot/knot-resolver/merge_requests/839
+CVE-2019-10190 [do not pass bogus negative answer to client]
 	RESERVED
+	- knot-resolver <unfixed>
+	NOTE: https://www.knot-resolver.cz/2019-07-10-knot-resolver-4.1.0.html
+	NOTE: https://gitlab.labs.nic.cz/knot/knot-resolver/merge_requests/827
 CVE-2019-10189
 	RESERVED
 CVE-2019-10188



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5f3feef1e374e688d1aad08690f91cf58f9616e5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/5f3feef1e374e688d1aad08690f91cf58f9616e5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190713/3b677d9b/attachment.html>