[Git][security-tracker-team/security-tracker][master] Remove not-affected traige for CVE-2019-10153/fence-agents in stretch
Salvatore Bonaccorso
carnil at debian.org
Sun Jun 30 18:52:45 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7f936405 by Salvatore Bonaccorso at 2019-06-30T17:51:29Z
Remove not-affected traige for CVE-2019-10153/fence-agents in stretch
Apparently the issue is present as well in 4.0.25 according to
maintaner, so the triage looks to be wrong. To be on safe side unmark it
as not-affected until clear what is correct.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7301,7 +7301,6 @@ CVE-2019-10154 (A flaw was found in Moodle before versions 3.7, 3.6.4. A web ser
CVE-2019-10153 [mis-handling of non-ASCII characters in guest comment fields]
RESERVED
- fence-agents 4.3.3-2 (low; bug #930887)
- [stretch] - fence-agents <not-affected> (Vulnerable code not present)
[jessie] - fence-agents <not-affected> (Vulnerable code introduced later)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1670460
NOTE: https://github.com/ClusterLabs/fence-agents/pull/255
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7f93640520b7a14222e760c6b6df9264eaa13f25
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7f93640520b7a14222e760c6b6df9264eaa13f25
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190630/85492c46/attachment.html>
More information about the debian-security-tracker-commits
mailing list