[Git][security-tracker-team/security-tracker][master] 2 commits: Revert "CVE-2019-16995/postgresql: jessie actually affected, I tested the...

Fri Nov 15 19:58:43 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8a9a997b by Salvatore Bonaccorso at 2019-11-15T19:56:56Z
Revert "CVE-2019-16995/postgresql: jessie actually affected, I tested the fixed version before DLA was out"

This reverts commit 35298f6b3b7465e21966276e1fc22011fc78e90a.

This was for a linux CVE actually and was triaged via kernel-sec. Put
the not-affected in place. The next commit will remove the
postgresql-common entry.

- - - - -
e2505dec by Salvatore Bonaccorso at 2019-11-15T19:57:57Z
Remove not-affected jessie entry for CVE-2019-3466/postgresql-common

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7999,6 +7999,7 @@ CVE-2017-18636 (CDG through 2017-01-01 allows downloadDocument.jsp?command=downl
 CVE-2019-16995 (In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_final ...)
 	- linux 4.19.37-1
 	[stretch] - linux 4.9.168-1
+	[jessie] - linux <not-affected> (Vulnerability introduced later)
 	NOTE: https://git.kernel.org/linus/6caabe7f197d3466d238f70915d65301f1716626
 CVE-2019-16994 (In the Linux kernel before 5.0, a memory leak exists in sit_init_net() ...)
 	- linux 4.19.28-1
@@ -46775,7 +46776,6 @@ CVE-2019-3466
 	RESERVED
 	{DSA-4568-1}
 	- postgresql-common 210
-	[jessie] - postgresql-common <not-affected> (Vulnerable code was introduced later)
 	NOTE: https://salsa.debian.org/postgresql/postgresql-common/commit/ec9d984b62ed79f61be97b786a9ff4381309979c
 CVE-2019-3465 (Rob Richards XmlSecLibs, all versions prior to v3.0.3, as used for exa ...)
 	{DSA-4560-1 DLA-1983-1}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/dabb2abdd9fd56f1ca00bf60cdc609082c32c1f6...e2505dec259806b4cf4027924f768b2d7328ab61

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/dabb2abdd9fd56f1ca00bf60cdc609082c32c1f6...e2505dec259806b4cf4027924f768b2d7328ab61
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191115/5c131862/attachment-0001.html>
