[Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for ssvnc issues

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
48a98227 by Salvatore Bonaccorso at 2019-11-29T13:43:58Z
Add Debian bug reference for ssvnc issues

- - - - -
7777bc7a by Salvatore Bonaccorso at 2019-11-29T13:43:59Z
Update status for CVE-2019-19055

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -950,7 +950,10 @@ CVE-2019-19057 (Two memory leaks in the mwifiex_pcie_init_evt_ring() function in
 CVE-2019-19056 (A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf() function in drive ...)
 	- linux <unfixed>
 CVE-2019-19055 (** DISPUTED ** A memory leak in the nl80211_get_ftm_responder_stats()  ...)
-	- linux <unfixed>
+	- linux <unfixed> (unimportant)
+	[buster] - linux <not-affected> (Vulnerable code introduced later)
+	[stretch] - linux <not-affected> (Vulnerable code introduced later)
+	[jessie] - linux <not-affected> (Vulnerable code introduced later)
 	NOTE: https://git.kernel.org/linus/1399c59fa92984836db90538cf92397fe7caaa57
 CVE-2019-19054 (A memory leak in the cx23888_ir_probe() function in drivers/media/pci/ ...)
 	- linux <unfixed>
@@ -53221,7 +53224,7 @@ CVE-2018-20024 (LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 co
 	{DSA-4383-1 DLA-1979-1 DLA-1617-1}
 	- libvncserver 0.9.11+dfsg-1.2 (bug #916941)
 	- italc <removed>
-	- ssvnc <unfixed>
+	- ssvnc <unfixed> (bug #945827)
 	- veyon 4.1.4+repack1-1
 	NOTE: https://github.com/LibVNC/libvncserver/issues/254
 	NOTE: https://github.com/LibVNC/libvncserver/commit/4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7
@@ -53238,7 +53241,7 @@ CVE-2018-20022 (LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains
 	{DSA-4383-1 DLA-1979-1 DLA-1617-1}
 	- libvncserver 0.9.11+dfsg-1.2 (bug #916941)
 	- italc <removed>
-	- ssvnc <unfixed>
+	- ssvnc <unfixed> (bug #945827)
 	- veyon 4.1.4+repack1-1
 	NOTE: https://github.com/LibVNC/libvncserver/issues/252
 	NOTE: https://github.com/LibVNC/libvncserver/commit/2f5b2ad1c6c99b1ac6482c95844a84d66bb52838
@@ -53247,7 +53250,7 @@ CVE-2018-20021 (LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c co
 	{DSA-4383-1 DLA-1979-1 DLA-1617-1}
 	- libvncserver 0.9.11+dfsg-1.2 (bug #916941)
 	- italc <removed>
-	- ssvnc <unfixed>
+	- ssvnc <unfixed> (bug #945827)
 	- veyon 4.1.4+repack1-1
 	NOTE: https://github.com/LibVNC/libvncserver/issues/251
 	NOTE: https://github.com/LibVNC/libvncserver/commit/c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c
@@ -53256,7 +53259,7 @@ CVE-2018-20020 (LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d co
 	{DSA-4383-1 DLA-1979-1 DLA-1617-1}
 	- libvncserver 0.9.11+dfsg-1.2 (bug #916941)
 	- italc <removed>
-	- ssvnc <unfixed>
+	- ssvnc <unfixed> (bug #945827)
 	- veyon 4.1.4+repack1-1
 	NOTE: https://github.com/LibVNC/libvncserver/issues/250
 	NOTE: https://github.com/LibVNC/libvncserver/commit/09f2f3fb6a5a163e453e5c2979054670c39694bc



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/2003088918c88198d5e559906351c29ce203e017...7777bc7af1f87ea9f12d10fd41a38c7eb5a97c7f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/2003088918c88198d5e559906351c29ce203e017...7777bc7af1f87ea9f12d10fd41a38c7eb5a97c7f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191129/7b10ba3e/attachment.html>