[Git][security-tracker-team/security-tracker][master] CVE-2019-1000020 and CVE-2019-1000019 will be fixed in current upload of libarchive to Stretch

Thorsten Alteholz alteholz at debian.org
Wed Oct 30 21:32:46 GMT 2019



Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
603e8c63 by Thorsten Alteholz at 2019-10-30T21:33:11Z
CVE-2019-1000020 and CVE-2019-1000019 will be fixed in current upload of libarchive to Stretch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -33907,13 +33907,11 @@ CVE-2019-1000021 (slixmpp version before commit 7cd73b594e8122dddf847953fcfc85ab
 CVE-2019-1000020 (libarchive version commit 5a98dcf8a86364b3c2c469c85b93647dfb139961 onw ...)
 	{DLA-1668-1}
 	- libarchive 3.3.3-4 (low)
-	[stretch] - libarchive <no-dsa> (Minor issue)
 	NOTE: https://github.com/libarchive/libarchive/pull/1120
 	NOTE: https://github.com/libarchive/libarchive/commit/8312eaa576014cd9b965012af51bc1f967b12423
 CVE-2019-1000019 (libarchive version commit bf9aec176c6748f0ee7a678c5f9f9555b9a757c1 onw ...)
 	{DLA-1668-1}
 	- libarchive 3.3.3-4 (low)
-	[stretch] - libarchive <no-dsa> (Minor issue)
 	NOTE: https://github.com/libarchive/libarchive/pull/1120
 	NOTE: https://github.com/libarchive/libarchive/commit/65a23f5dbee4497064e9bb467f81138a62b0dae1
 CVE-2019-1000017 (Chamilo Chamilo-lms version 1.11.8 and earlier contains an Incorrect A ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/603e8c632011c5f10eff06568db7850313caf412

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/603e8c632011c5f10eff06568db7850313caf412
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191030/4ef4ab2c/attachment.html>


More information about the debian-security-tracker-commits mailing list