[Git][security-tracker-team/security-tracker][master] Add CVE-2019-9633/glib2.0
Salvatore Bonaccorso
carnil at debian.org
Mon Mar 11 20:29:10 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a56e1912 by Salvatore Bonaccorso at 2019-03-11T20:28:43Z
Add CVE-2019-9633/glib2.0
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -202,7 +202,10 @@ CVE-2019-9638 (An issue was discovered in the EXIF component in PHP before 7.1.2
NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77563
CVE-2019-9633 (gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent ...)
- TODO: check
+ [experimental] - glib2.0 2.59.2-1
+ - glib2.0 <unfixed>
+ NOTE: https://gitlab.gnome.org/GNOME/glib/issues/1649
+ NOTE: https://gitlab.gnome.org/GNOME/glib/commit/d553d92d6e9f53cbe5a34166fcb919ba652c6a8e (2.59.2)
CVE-2019-9632 (ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability via ...)
NOT-FOR-US: ESAFENET CDG
CVE-2019-9631 (Poppler 0.74.0 has a heap-based buffer over-read in the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a56e191288a4c462360171816653962890fc9a96
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a56e191288a4c462360171816653962890fc9a96
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190311/28e6adbf/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list