[Git][security-tracker-team/security-tracker][master] Add CVE-2019-1395{1,2}/gdnsd
Salvatore Bonaccorso
carnil at debian.org
Thu Jul 18 21:42:21 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
231deb0f by Salvatore Bonaccorso at 2019-07-18T20:42:07Z
Add CVE-2019-1395{1,2}/gdnsd
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15,9 +15,11 @@ CVE-2019-13954
CVE-2019-13953
RESERVED
CVE-2019-13952 (The set_ipv6() function in zscan_rfc1035.rl in gdnsd 3.2.0 has a stack ...)
- TODO: check
+ - gdnsd <unfixed>
+ NOTE: https://github.com/gdnsd/gdnsd/issues/185
CVE-2019-13951 (The set_ipv4() function in zscan_rfc1035.rl in gdnsd 3.2.0 has a stack ...)
- TODO: check
+ - gdnsd <unfixed>
+ NOTE: https://github.com/gdnsd/gdnsd/issues/185
CVE-2019-13950 (index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored ...)
NOT-FOR-US: SyGuestBook A5
CVE-2019-13949 (SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demons ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/231deb0f970d42c915ba21c59ca2b3e5defd6d5f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/231deb0f970d42c915ba21c59ca2b3e5defd6d5f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190718/5dc97308/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list