[Git][security-tracker-team/security-tracker][master] 2 commits: Readd wordpress to dla-needed.txt
Markus Koschany
apo at debian.org
Thu Oct 17 21:53:13 BST 2019
Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4acd2d79 by Markus Koschany at 2019-10-17T20:52:56Z
Readd wordpress to dla-needed.txt
- - - - -
70081f01 by Markus Koschany at 2019-10-17T20:52:57Z
CVE-2019-17594,CVE-2019-17595,ncurses: Mark as no-dsa for Jessie
Mere crashes, low priority
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -2232,12 +2232,14 @@ CVE-2019-17595 (There is a heap-based buffer over-read in the fmt_entry function
- ncurses <unfixed> (low; bug #942401)
[buster] - ncurses <no-dsa> (Minor issue)
[stretch] - ncurses <no-dsa> (Minor issue)
+ [jessie] - ncurses <no-dsa> (Minor issue)
NOTE: https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00013.html
NOTE: https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00045.html
CVE-2019-17594 (There is a heap-based buffer over-read in the _nc_find_entry function ...)
- ncurses <unfixed> (low; bug #942401)
[buster] - ncurses <no-dsa> (Minor issue)
[stretch] - ncurses <no-dsa> (Minor issue)
+ [jessie] - ncurses <no-dsa> (Minor issue)
NOTE: https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00017.html
NOTE: https://lists.gnu.org/archive/html/bug-ncurses/2019-10/msg00045.html
CVE-2019-17593 (JIZHICMS 1.5.1 allows admin.php/Admin/adminadd.html CSRF to add an adm ...)
=====================================
data/dla-needed.txt
=====================================
@@ -135,6 +135,8 @@ tika
NOTE: 20190823: found commit links and reproducers.
NOTE: currently having difficulties to reproduce issues. Asked maintainer for help (c.f. debian-lts ML)
--
+wordpress
+--
xen
--
yard
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4fdc82d5ae9309cd16a095395389f947d096f6f7...70081f01d1b735ddb6f4585b513b4eb415f78162
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4fdc82d5ae9309cd16a095395389f947d096f6f7...70081f01d1b735ddb6f4585b513b4eb415f78162
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191017/70ff2559/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list