[Git][security-tracker-team/security-tracker][master] update for gdnsd
Moritz Muehlenhoff
jmm at debian.org
Fri Jul 19 15:41:30 BST 2019
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b24de1a6 by Moritz Muehlenhoff at 2019-07-19T14:41:00Z
update for gdnsd
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -55,9 +55,10 @@ CVE-2019-13952 (The set_ipv6() function in zscan_rfc1035.rl in gdnsd 3.2.0 has a
NOTE: https://github.com/gdnsd/gdnsd/issues/185
NOTE: No security impact, data is under administrative control
CVE-2019-13951 (The set_ipv4() function in zscan_rfc1035.rl in gdnsd 3.2.0 has a stack ...)
- - gdnsd <unfixed> (unimportant; bug #932407)
+ - gdnsd <not-affected> (Vulnerable code not present, introduced in 3.x)
NOTE: https://github.com/gdnsd/gdnsd/issues/185
NOTE: No security impact, data is under administrative control
+ NOTE: Introduced in https://github.com/gdnsd/gdnsd/commit/15715fc30d5e41e53d4a16d2434fc5c3190e129b
CVE-2019-13950 (index.php?c=admin&a=index in SyGuestBook A5 Version 1.2 has stored ...)
NOT-FOR-US: SyGuestBook A5
CVE-2019-13949 (SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demons ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b24de1a65a2a31c445b0f9b809f83de162b62052
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b24de1a65a2a31c445b0f9b809f83de162b62052
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190719/2fee013d/attachment.html>
More information about the debian-security-tracker-commits
mailing list