[Git][security-tracker-team/security-tracker][master] Triage CVE-2019-11578 in dhcpcd5 for jessie LTS.
Chris Lamb
lamby at debian.org
Sun May 5 17:19:20 BST 2019
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b43e52b4 by Chris Lamb at 2019-05-05T16:19:07Z
Triage CVE-2019-11578 in dhcpcd5 for jessie LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -455,6 +455,7 @@ CVE-2019-11579 (dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow wi
CVE-2019-11578 (auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by pe ...)
- dhcpcd5 <unfixed> (low; bug #928056)
[stretch] - dhcpcd5 <no-dsa> (Minor issue)
+ [jessie] - dhcpcd5 <not-affected> (Authentication code added in later versions)
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=7121040790b611ca3fbc400a1bbcd4364ef57233
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=cfde89ab66cb4e5957b1c4b68ad6a9449e2784da
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=aee631aadeef4283c8a749c1caf77823304acf5e
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b43e52b4d9a890426c784522d32bcc8218f7dbcc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b43e52b4d9a890426c784522d32bcc8218f7dbcc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190505/8ec04a47/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list