[Git][security-tracker-team/security-tracker][master] Add and claim haproxy
Sebastien Delafond
seb at debian.org
Wed Nov 27 08:06:09 GMT 2019
Sebastien Delafond pushed to branch master at Debian Security Tracker / security-tracker
Commits:
22309732 by Sébastien Delafond at 2019-11-27T08:05:29Z
Add and claim haproxy
- - - - -
2 changed files:
- data/CVE/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2019-XXXX [CRLF injection when decoding from http/2 to http/1]
+ - haproxy 2.0.10-1
+ NOTE: https://git.haproxy.org/?p=haproxy.git;a=commit;h=54f53ef7ce4102be596130b44c768d1818570344
+ NOTE: https://git.haproxy.org/?p=haproxy.git;a=commit;h=146f53ae7e97dbfe496d0445c2802dd0a30b0878
CVE-2019-19308
RESERVED
CVE-2019-19307 (An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6. ...)
=====================================
data/dsa-needed.txt
=====================================
@@ -27,6 +27,10 @@ glusterfs/oldstable
--
graphicsmagick/oldstable
--
+haproxy (seb)
+ 2019-11-25: maintainer proposed debdiff
+ 2019-11-27: CVE pending
+--
intel-microcode (carnil)
Followup for more support for other CPUs pending
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/22309732eadbbab6645e5fa2fe43c59164339a85
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/22309732eadbbab6645e5fa2fe43c59164339a85
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191127/438bc605/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list