[Git][security-tracker-team/security-tracker][master] Reference relevant change needed for CVE-2019-18890/redmine

Mon Nov 18 21:36:34 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
78d2d53f by Salvatore Bonaccorso at 2019-11-18T21:35:20Z
Reference relevant change needed for CVE-2019-18890/redmine

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -491,6 +491,7 @@ CVE-2019-18890 [SQL injection]
 	NOTE: https://www.redmine.org/news/125
 	NOTE: https://www.redmine.org/projects/redmine/repository/revisions/16196
 	NOTE: https://www.redmine.org/issues/32374
+	NOTE: https://github.com/redmine/redmine/commit/04d4a1a191c46e4595ed455372e86c66cf3f6ed7#diff-72469d98e80a60152ebcfa998306b5ecL581-R584
 CVE-2019-18889 [Forbid serializing AbstractAdapter and TagAwareAdapter instances]
 	RESERVED
 	- symfony 4.3.8+dfsg-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/78d2d53fa05cae4ebe6f803218ba79ce597635f7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/78d2d53fa05cae4ebe6f803218ba79ce597635f7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191118/e8b467a9/attachment-0001.html>
