[Git][security-tracker-team/security-tracker][master] data/CVE/list: Mark mailutils in Debian as not affected by CVE-2019-18862. The...

[Mike Gabriel]

Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8adb0d62 by Mike Gabriel at 2019-11-18T14:46:22Z
data/CVE/list: Mark mailutils in Debian as not affected by CVE-2019-18862. The Debian package does not install /usr/sbin/maidag suid root.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -472,6 +472,9 @@ CVE-2019-18863
 	RESERVED
 CVE-2019-18862 (maidag in GNU Mailutils before 3.8 is installed setuid and allows loca ...)
 	- mailutils <unfixed> (bug #944265)
+	[jessie] - mailutils <not-affected> (/usr/sbin/maidag not installed suid root on Debian)
+	[stretch] - mailutils <not-affected> (/usr/sbin/maidag not installed suid root on Debian)
+	[buster] - mailutils <not-affected> (/usr/sbin/maidat not installed suid root on Debian)
 CVE-2019-18861
 	RESERVED
 CVE-2019-18860



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8adb0d6284c2a37d81ce0e16fa8d58ee9f8b0d2b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8adb0d6284c2a37d81ce0e16fa8d58ee9f8b0d2b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191118/3a8134f9/attachment.html>