[Git][security-tracker-team/security-tracker][master] CVE-2019-1490{4,5}: Move status from undetermined to unfixed

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4c8dab16 by Salvatore Bonaccorso at 2020-01-01T08:27:27Z
CVE-2019-1490{4,5}: Move status from undetermined to unfixed

Both issues have low impact according to the maintainer.

Surpsisingly both have missleading fixed status information in the Red
Hat reports; Maintainer will further check the status.

Thanks: Lee Garrett

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -24542,11 +24542,15 @@ CVE-2019-14906
 	NOT-FOR-US: Specific CVE assignment for incorrect/incomplete fix of CVE-2019-13616 in RHEL 7
 CVE-2019-14905 [malicious code could craft filename in nxos_file_copy module]
 	RESERVED
-	- ansible <undetermined>
+	- ansible <unfixed> (low)
+	[buster] - ansible <no-dsa> (Minor issue)
+	[stretch] - ansible <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1776943
 CVE-2019-14904 [vulnerability in solaris_zone module via crafted solaris zone]
 	RESERVED
-	- ansible <undetermined>
+	- ansible <unfixed> (low)
+	[buster] - ansible <no-dsa> (Minor issue)
+	[stretch] - ansible <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1776944
 CVE-2019-14903
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4c8dab1672a9b60f3cbae0711c52bb9b3f839c41

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4c8dab1672a9b60f3cbae0711c52bb9b3f839c41
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200101/e26b493b/attachment.html>