[Git][security-tracker-team/security-tracker][master] dla: mark glib2.0/CVE-2019-9633 as no-dsa

Mon Mar 25 10:41:25 GMT 2019

Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
98bae36d by Sylvain Beucler at 2019-03-25T10:40:59Z
dla: mark glib2.0/CVE-2019-9633 as no-dsa

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1726,6 +1726,7 @@ CVE-2019-9633 (gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a p
 	[experimental] - glib2.0 2.59.2-1
 	- glib2.0 <unfixed> (bug #924344)
 	[stretch] - glib2.0 <no-dsa> (Minor issue)
+	[jessie] - glib2.0 <no-dsa> (Minor issue; not reproducible)
 	NOTE: https://gitlab.gnome.org/GNOME/glib/issues/1649
 	NOTE: https://gitlab.gnome.org/GNOME/glib/commit/d553d92d6e9f53cbe5a34166fcb919ba652c6a8e (2.59.2)
 CVE-2019-9632 (ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability vi ...)


=====================================
data/dla-needed.txt
=====================================
@@ -32,8 +32,6 @@ firmware-nonfree (Emilio)
 --
 ghostscript
 --
-glib2.0 (Sylvain Beucler)
---
 hdf5 (Hugo Lefeuvre)
   NOTE: requires some prior triage, almost all cves undetermined.
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/98bae36d726973e598ec1fe6983f5e131a50928f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/98bae36d726973e598ec1fe6983f5e131a50928f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190325/64727c24/attachment.html>
