[Git][security-tracker-team/security-tracker][master] Associate CVE-2019-12094 with php-horde
Salvatore Bonaccorso
carnil at debian.org
Tue Nov 19 06:07:19 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
120e6cfd by Salvatore Bonaccorso at 2019-11-19T06:06:46Z
Associate CVE-2019-12094 with php-horde
This either was associated with php-horde-groupware back when initially
triaged by error or based on the then available information.
It looks right to reassign to src:php-horde.
Further discussion on the actual CVE-2019-12094 under discussion with
Roberto.
Thanks: Roberto Sanchez for the further triage on this issue.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23655,7 +23655,7 @@ CVE-2019-12095 (Horde Trean, as used in Horde Groupware Webmail Edition through
- php-horde-trean <unfixed>
NOTE: https://bugs.horde.org/ticket/14926
CVE-2019-12094 (Horde Groupware Webmail Edition through 5.2.22 allows XSS via an admin ...)
- - php-horde-groupware <unfixed>
+ - php-horde <unfixed>
NOTE: https://bugs.horde.org/ticket/14926
NOTE: https://github.com/horde/base/commit/81a7b53973506856db67e7f0b0263be29528aa75
CVE-2019-12093
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/120e6cfd5e1cab1f7227fcd56a4c892b70a08bb0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/120e6cfd5e1cab1f7227fcd56a4c892b70a08bb0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191119/a566a955/attachment.html>
More information about the debian-security-tracker-commits
mailing list