[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sat May 25 21:10:33 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6ae76b13 by security tracker role at 2019-05-25T20:10:23Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3105,6 +3105,7 @@ CVE-2019-11037 (In PHP imagick extension in versions between 3.3.0 and 3.4.4, wr
 	NOTE: https://bugs.php.net/bug.php?id=77791
 	NOTE: https://github.com/mkoppanen/imagick/commits/bugfix_77791
 CVE-2019-11036 (When processing certain files, PHP EXIF extension in versions 7.1.x be ...)
+	{DLA-1803-1}
 	- php7.3 <unfixed> (bug #928421)
 	- php7.0 <removed>
 	[stretch] - php7.0 <postponed> (Fix along in future update)
@@ -3112,6 +3113,7 @@ CVE-2019-11036 (When processing certain files, PHP EXIF extension in versions 7.
 	NOTE: Fixed in 7.1.29, 7.2.18, 7.3.5
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77950
 CVE-2019-11035 (When processing certain files, PHP EXIF extension in versions 7.1.x be ...)
+	{DLA-1803-1}
 	- php7.3 7.3.4-1
 	- php7.0 <removed>
 	[stretch] - php7.0 <postponed> (Fix along in future update)
@@ -3119,6 +3121,7 @@ CVE-2019-11035 (When processing certain files, PHP EXIF extension in versions 7.
 	NOTE: Fixed in 7.1.28, 7.2.17, 7.3.4
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77831
 CVE-2019-11034 (When processing certain files, PHP EXIF extension in versions 7.1.x be ...)
+	{DLA-1803-1}
 	- php7.3 7.3.4-1
 	- php7.0 <removed>
 	[stretch] - php7.0 <postponed> (Fix along in future update)
@@ -17874,6 +17877,7 @@ CVE-2019-5437 (Information exposure through the directory listing in npm's harp
 	NOT-FOR-US: npm harp module
 CVE-2019-5436 [TFTP receive buffer overflow]
 	RESERVED
+	{DLA-1804-1}
 	- curl <unfixed> (bug #929351)
 	NOTE: https://curl.haxx.se/docs/CVE-2019-5436.html
 	NOTE: Introduced by: https://github.com/curl/curl/commit/0516ce7786e95



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6ae76b1370ddc372cc65d6d3c4e5c07696016ccf

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/6ae76b1370ddc372cc65d6d3c4e5c07696016ccf
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190525/364e5fea/attachment.html>

More information about the debian-security-tracker-commits mailing list