[Git][security-tracker-team/security-tracker][master] 2 commits: Add CVE-2019-12454/linux

Thu May 30 09:51:38 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3574b480 by Salvatore Bonaccorso at 2019-05-30T08:51:23Z
Add CVE-2019-12454/linux

- - - - -
2353078e by Salvatore Bonaccorso at 2019-05-30T08:51:24Z
Add CVE-2019-12455/linux

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4,6 +4,10 @@ CVE-2019-XXXX [binary can be truncated by root under certain conditions]
 CVE-2019-XXXX [seccomp bypass when joining jails]
 	- firejail 0.9.58.2-2 (bug #929732)
 	NOTE: https://github.com/netblue30/firejail/issues/2718
+CVE-2019-12455 [clk-sunxi: fix a missing-check bug in sunxi_divs_clk_setup()]
+	- linux <unfixed>
+CVE-2019-12454 [wcd9335: fix a incorrect use of kstrndup()]
+	- linux <not-affected> (Vulnerable code not present, introduced in 5.1-rc1)
 CVE-2019-12453
 	RESERVED
 CVE-2019-12452 (types/types.go in Containous Traefik 1.7.x through 1.7.11, when the -- ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8ef170dee3441dff7858061528ad4db9e202b425...2353078e44913a81f20f76bb9cfc1660ce9a69df

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/8ef170dee3441dff7858061528ad4db9e202b425...2353078e44913a81f20f76bb9cfc1660ce9a69df
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190530/5a30b4de/attachment.html>
