[Git][security-tracker-team/security-tracker][master] Add CVE-2019-12854/squid
Salvatore Bonaccorso
carnil at debian.org
Wed Jul 17 07:16:22 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b227c2f7 by Salvatore Bonaccorso at 2019-07-17T06:14:47Z
Add CVE-2019-12854/squid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2886,8 +2886,12 @@ CVE-2019-12855 (In words.protocols.jabber.xmlstream in Twisted through 19.2.1, X
[jessie] - twisted <no-dsa> (Minor issue)
NOTE: https://github.com/twisted/twisted/pull/1147
NOTE: https://twistedmatrix.com/trac/ticket/9561
-CVE-2019-12854
+CVE-2019-12854 [denial of service in cachemgr.cgi]
RESERVED
+ - squid <unfixed>
+ - squid3 <not-affected> (Vulnerable code not present; Vulnerable code only in 4.x series)
+ NOTE: http://www.squid-cache.org/Advisories/SQUID-2019_1.txt
+ NOTE: http://www.squid-cache.org/Versions/v4/changesets/squid-4-2981a957716c61ff7e21eee1d7d6eb5a237e466d.patch
CVE-2019-12853
RESERVED
CVE-2019-12852 (An SSRF attack was possible on a JetBrains YouTrack server. The issue ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b227c2f77cd84ba70830c0a811b54bf4e80c4d82
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b227c2f77cd84ba70830c0a811b54bf4e80c4d82
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190717/63e5e1b7/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list