[Git][security-tracker-team/security-tracker][master] Add CVE-2019-1485{0,1}/nbdkit

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0150ec78 by Salvatore Bonaccorso at 2019-10-02T06:15:14Z
Add CVE-2019-1485{0,1}/nbdkit

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6260,10 +6260,29 @@ CVE-2019-14853
 	RESERVED
 CVE-2019-14852
 	RESERVED
-CVE-2019-14851
-	RESERVED
-CVE-2019-14850
-	RESERVED
+CVE-2019-14851 [assertion failure by issuing commands in the wrong order]
+	RESERVED
+	- nbdkit 1.14.2-1
+	NOTE: https://www.redhat.com/archives/libguestfs/2019-September/msg00272.html
+	NOTE: 1.15 (development branch):
+	NOTE: https://github.com/libguestfs/nbdkit/commit/a6b88b195a959b17524d1c8353fd425d4891dc5f
+	NOTE: 1.14:
+	NOTE: https://github.com/libguestfs/nbdkit/commit/bf0d61883a2f02f4388ec10dc92d4c61c093679e
+	NOTE: 1.12:
+	NOTE: https://github.com/libguestfs/nbdkit/commit/b2bc6683ea3cd1f6be694e8a681dfa411b7d15f3
+CVE-2019-14850 [denial of service due to premature opening of back-end connection]
+	RESERVED
+	- nbdkit 1.14.1-1
+	NOTE: https://www.redhat.com/archives/libguestfs/2019-September/msg00084.html
+	NOTE: 1.15 (development branch):
+	NOTE: https://github.com/libguestfs/nbdkit/commit/c05686f9577fa91b6a3a4d8c065954ca6fc3fd62
+	NOTE: https://github.com/libguestfs/nbdkit/commit/a6b88b195a959b17524d1c8353fd425d4891dc5f
+	NOTE: 1.14:
+	NOTE: https://github.com/libguestfs/nbdkit/commit/e06cde00659ff97182173d0e33fff784041bcb4a
+	NOTE: https://github.com/libguestfs/nbdkit/commit/bf0d61883a2f02f4388ec10dc92d4c61c093679e
+	NOTE: 1.12:
+	NOTE: https://github.com/libguestfs/nbdkit/commit/22b30adb796bb6dca264a38598f80b8a234ff978
+	NOTE: https://github.com/libguestfs/nbdkit/commit/b2bc6683ea3cd1f6be694e8a681dfa411b7d15f3
 CVE-2019-14849
 	RESERVED
 CVE-2019-14848



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0150ec78f35f8490a7ef67e35ed7fadced9b97ed

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0150ec78f35f8490a7ef67e35ed7fadced9b97ed
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191002/64d5ac79/attachment.html>