[Git][security-tracker-team/security-tracker][master] CVE-2019-9929/cfengine: Add upstream fixes.

Fri Jun 28 12:04:18 BST 2019


Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0b9aa12a by Mike Gabriel at 2019-06-28T11:04:02Z
CVE-2019-9929/cfengine: Add upstream fixes.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7733,6 +7733,8 @@ CVE-2019-9930
 CVE-2019-9929 (Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions. ...)
 	- cfengine3 <undetermined>
 	NOTE: older cfengine variants (cfengine2) affected? Only Enterprise version affected (same version as src:cfengine3)?
+	NOTE: https://github.com/cfengine/core/commit/f7556bf1a0061644e35114a07a91e9b0c3267c48#diff-291cd8f3f0f8a5c1875630ef64a667a2
+	NOTE: related: https://github.com/cfengine/core/commit/461dc7019ab5acebabc341143838a2307d9b92db#diff-a877a71a0122c0ea1c66c03883130b86
 CVE-2019-9928 (GStreamer before 1.16.0 has a heap-based buffer overflow in the RTSP c ...)
 	{DSA-4437-1 DLA-1770-1 DLA-1769-1}
 	[experimental] - gst-plugins-base1.0 1.15.90-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b9aa12a60133b36139d4734bc1671ea8a7538d7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0b9aa12a60133b36139d4734bc1671ea8a7538d7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190628/49df753e/attachment.html>
