[Git][security-tracker-team/security-tracker][master] Reference upstream issue for CVE-2019-16707
Salvatore Bonaccorso
carnil at debian.org
Sat Sep 28 13:12:48 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
de95ff24 by Salvatore Bonaccorso at 2019-09-28T12:12:16Z
Reference upstream issue for CVE-2019-16707
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -583,6 +583,7 @@ CVE-2019-16707 (Hunspell 1.7.0 has an invalid read operation in SuggestMgr::left
- hunspell <unfixed> (unimportant; bug #941185)
NOTE: Negligible security impact
NOTE: https://github.com/butterflyhack/hunspell-crash
+ NOTE: https://github.com/hunspell/hunspell/issues/624
CVE-2019-16706 (kkcms v1.3 has a CSRF vulnerablity that can add an user account via ad ...)
NOT-FOR-US: kkcms
CVE-2018-21019 (Home Assistant before 0.67.0 was vulnerable to an information disclosu ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/de95ff2410018b5dad94dc7c54593e7091a8c5e2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/de95ff2410018b5dad94dc7c54593e7091a8c5e2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190928/9c053e63/attachment.html>
More information about the debian-security-tracker-commits
mailing list