[Git][security-tracker-team/security-tracker][master] new libidn issue

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0ee2b044 by Moritz Muehlenhoff at 2019-10-23T07:32:58Z
new libidn issue
new ansible issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10121,6 +10121,9 @@ CVE-2019-14865
 	RESERVED
 CVE-2019-14864
 	RESERVED
+	- ansible <unfixed> (low)
+	NOTE: https://github.com/ansible/ansible/issues/63522
+	NOTE: https://github.com/ansible/ansible/pull/63527
 CVE-2019-14863
 	RESERVED
 	- angular.js (bug #942833)
@@ -18563,7 +18566,10 @@ CVE-2019-12292 (Citrix AppDNA before 7 1906.1.0.472 has Incorrect Access Control
 CVE-2019-12291 (HashiCorp Consul 1.4.0 through 1.5.0 has Incorrect Access Control. Key ...)
 	NOT-FOR-US: HashiCorp Consul
 CVE-2019-12290 (GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specifi ...)
-	TODO: check
+	- libidn2 2.2.0-1
+	NOTE: https://gitlab.com/libidn/libidn2/commit/241e8f486134793cb0f4a5b0e5817a97883401f5
+	NOTE: https://gitlab.com/libidn/libidn2/commit/614117ef6e4c60e1950d742e3edf0a0ef8d389de
+	NOTE: https://gitlab.com/libidn/libidn2/merge_requests/71
 CVE-2019-12289 (An issue was discovered in upgrade_firmware.cgi on VStarcam 100T (C782 ...)
 	NOT-FOR-US: VStarcam
 CVE-2019-12288 (An issue was discovered in upgrade_htmls.cgi on VStarcam 100T (C7824WI ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0ee2b044dda3cd6009731b489a2e670000a11679

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0ee2b044dda3cd6009731b489a2e670000a11679
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191023/2621e0d6/attachment.html>