[Git][security-tracker-team/security-tracker][master] Update affected status for CVE-2019-17266/libsoup2.4
Salvatore Bonaccorso
carnil at debian.org
Wed Oct 9 19:47:23 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
634be0f3 by Salvatore Bonaccorso at 2019-10-09T18:46:39Z
Update affected status for CVE-2019-17266/libsoup2.4
Thanks: Claudio Saavedra
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -186,6 +186,9 @@ CVE-2019-17267 (A Polymorphic Typing issue was discovered in FasterXML jackson-d
NOTE: https://github.com/FasterXML/jackson-databind/commit/191a4cdf87b56d2ddddb77edd895ee756b7f75eb
CVE-2019-17266 (libsoup through 2.68.1 has a heap-based buffer over-read because soup_ ...)
- libsoup2.4 2.68.2-1 (bug #941912)
+ [buster] - libsoup2.4 <not-affected> (Vulnerable code introduced in 2.65.1)
+ [stretch] - libsoup2.4 <not-affected> (Vulnerable code introduced in 2.65.1)
+ [jessie] - libsoup2.4 <not-affected> (Vulnerable code introduced in 2.65.1)
NOTE: https://gitlab.gnome.org/GNOME/libsoup/issues/173 (private)
CVE-2019-17265
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/634be0f36f227a7bb376d37a9acab26ba52aab8c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/634be0f36f227a7bb376d37a9acab26ba52aab8c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191009/0b53ab4a/attachment.html>
More information about the debian-security-tracker-commits
mailing list