[Git][security-tracker-team/security-tracker][master] Add three new CVEs for linux

Thu Nov 21 08:21:58 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
52b36a67 by Salvatore Bonaccorso at 2019-11-21T08:20:09Z
Add three new CVEs for linux

It is unclear if they are reported upstream or just reported by someone
to MITRE to get a CVE. Check further status first in kernel-sec.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -250,13 +250,13 @@ CVE-2019-19041 (An issue was discovered in Xorux Lpar2RRD 6.11 and Stor2RRD 2.61
 CVE-2019-19040 (KairosDB through 1.2.2 has XSS in view.html because of showErrorMessag ...)
 	NOT-FOR-US: KairosDB
 CVE-2019-19039 (__btrfs_free_extent in fs/btrfs/extent-tree.c in the Linux kernel thro ...)
-	TODO: check
+	- linux <unfixed>
 CVE-2019-19038
 	RESERVED
 CVE-2019-19037 (ext4_empty_dir in fs/ext4/namei.c in the Linux kernel through 5.3.12 a ...)
-	TODO: check
+	- linux <unfixed>
 CVE-2019-19036 (btrfs_root_node in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 ...)
-	TODO: check
+	- linux <unfixed>
 CVE-2019-19035 (jhead 3.03 is affected by: heap-based buffer over-read. The impact is: ...)
 	- jhead <unfixed> (unimportant; bug #944961)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1765647



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/52b36a6724a25a88540f6778dcf59b09187fe03d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/52b36a6724a25a88540f6778dcf59b09187fe03d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191121/1673d2f5/attachment-0001.html>
