[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2019-19271/proftpd-dfsg
Salvatore Bonaccorso
carnil at debian.org
Tue Nov 26 20:21:18 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bb6536a2 by Salvatore Bonaccorso at 2019-11-26T20:20:01Z
Add fixed version for CVE-2019-19271/proftpd-dfsg
The issue was fixed in 1.3.6 (and verified between 1.3.5e-1 and 1.3.6-1
versions in Debian).
As such the fix is as well already present in buster, thus removing the
no-dsa tagged entry.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -82,8 +82,7 @@ CVE-2019-19272 (An issue was discovered in tls_verify_crl in ProFTPD before 1.3.
[stretch] - proftpd-dfsg <no-dsa> (Minor issue)
NOTE: https://github.com/proftpd/proftpd/issues/858
CVE-2019-19271 (An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A w ...)
- - proftpd-dfsg <unfixed>
- [buster] - proftpd-dfsg <no-dsa> (Minor issue)
+ - proftpd-dfsg 1.3.6-1
[stretch] - proftpd-dfsg <no-dsa> (Minor issue)
NOTE: https://github.com/proftpd/proftpd/issues/860
CVE-2019-19270 (An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. F ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bb6536a2081507a85ea4bc8c5c18ee5d5a479ed7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bb6536a2081507a85ea4bc8c5c18ee5d5a479ed7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191126/2c308c82/attachment.html>
More information about the debian-security-tracker-commits
mailing list