[Git][security-tracker-team/security-tracker][master] Update status for CVE-2014-0193
Salvatore Bonaccorso
carnil at debian.org
Fri Feb 14 19:45:10 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9956f3f9 by Salvatore Bonaccorso at 2020-02-14T20:43:23+01:00
Update status for CVE-2014-0193
Since the fix went upstream in 3.9.1 and the fix actually entered
unstable's version with the 3.9.9.Final-1 move the tracking there. It
got fixed before then afterwards the source was removed from the
archive.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -264660,8 +264660,7 @@ CVE-2014-0194
REJECTED
CVE-2014-0193 (WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7. ...)
- netty <not-affected> (WebSocket08FrameDecoder function not present; bug #746639)
- - netty-3.9 <removed>
- [stretch] - netty-3.9 3.9.9.Final-1
+ - netty-3.9 3.9.9.Final-1
NOTE: https://github.com/netty/netty/commit/48edb7802b42b0e2eb5a55d8eca390e0c9066783
CVE-2014-0192 (Foreman 1.4.0 before 1.5.0 does not properly restrict access to provis ...)
- foreman <itp> (bug #663101)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9956f3f9aed3407e50e176ed6478fae1e8d8c45b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9956f3f9aed3407e50e176ed6478fae1e8d8c45b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200214/c42ff12d/attachment.html>
More information about the debian-security-tracker-commits
mailing list