[Git][security-tracker-team/security-tracker][master] Add CVE-2019-13990/libquartz{,2}-java

Fri Jul 26 23:33:39 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7f43b958 by Salvatore Bonaccorso at 2019-07-26T22:33:02Z
Add CVE-2019-13990/libquartz{,2}-java

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -644,7 +644,9 @@ CVE-2019-13992
 CVE-2019-13991 (Embedded systems based on Arduino before Rev3 allow remote attackers t ...)
 	NOT-FOR-US: Issue on embedded systems based on Arduino before Rev3
 CVE-2019-13990 (initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracott ...)
-	TODO: check
+	- libquartz-java <unfixed>
+	- libquartz2-java <unfixed>
+	NOTE: https://github.com/quartz-scheduler/quartz/issues/467
 CVE-2019-13989 (dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat() func ...)
 	- dpic <itp> (bug #597334)
 CVE-2019-13988



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7f43b958e2066e52703d59331c58a1495a21ae62

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7f43b958e2066e52703d59331c58a1495a21ae62
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190726/708269ab/attachment.html>
