[Git][security-tracker-team/security-tracker][master] Add previous reference for cpio bug for CVE-2019-14866
Salvatore Bonaccorso
carnil at debian.org
Tue Oct 29 14:42:30 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7496b25 by Salvatore Bonaccorso at 2019-10-29T14:40:55Z
Add previous reference for cpio bug for CVE-2019-14866
The issue was initially reported to the Debian BTS as well, tagged
security but without requesting a CVE. This was now done by Red Hat so
associate both items.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -10957,9 +10957,9 @@ CVE-2019-14868
RESERVED
CVE-2019-14867
RESERVED
-CVE-2019-14866
+CVE-2019-14866 [improper input validation when writing tar header fields leads to unexpect tar generation]
RESERVED
- - cpio <unfixed>
+ - cpio <unfixed> (bug #941412)
NOTE: https://lists.gnu.org/archive/html/bug-cpio/2019-08/msg00003.html
CVE-2019-14865
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e7496b25f7bbf79fc3eea1d5c95421b14129756e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/e7496b25f7bbf79fc3eea1d5c95421b14129756e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191029/b02aa162/attachment.html>
More information about the debian-security-tracker-commits
mailing list