[Git][security-tracker-team/security-tracker][master] Reference upstream commit for CVE-2019-17427/redmine
Salvatore Bonaccorso
carnil at debian.org
Mon Nov 18 21:37:19 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
34a35e9b by Salvatore Bonaccorso at 2019-11-18T21:36:45Z
Reference upstream commit for CVE-2019-17427/redmine
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -7339,6 +7339,7 @@ CVE-2019-17428
CVE-2019-17427 (In Redmine before 3.4.11 and 4.0.x before 4.0.4, persistent XSS exists ...)
- redmine 4.0.4-1
NOTE: Fixed in 3.4.11 and 4.0.4
+ NOTE: https://github.com/redmine/redmine/commit/899fc2e0cd2bcb4f5f9333b612b160bb9c6e803b
CVE-2019-17426 (Automattic Mongoose through 5.7.4 allows attackers to bypass access co ...)
NOT-FOR-US: Automattic Mongoose (different from Cesenta Mongoose)
CVE-2019-17425
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/34a35e9b01dcfaa6ae859bc4d3f96c8b17120a83
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/34a35e9b01dcfaa6ae859bc4d3f96c8b17120a83
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191118/9f2a7b78/attachment.html>
More information about the debian-security-tracker-commits
mailing list