[Git][security-tracker-team/security-tracker][master] Track fixed version for linux CVEs via unstable
Salvatore Bonaccorso
carnil at debian.org
Sun Jan 5 15:14:32 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0786240d by Salvatore Bonaccorso at 2020-01-05T16:13:52+01:00
Track fixed version for linux CVEs via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4089,7 +4089,7 @@ CVE-2019-19948 (In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer overfl
NOTE: https://github.com/ImageMagick/ImageMagick/commit/6ae32a9038e360b3491969d5d03d490884f02b4c (7.x)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/9e7db22f8c374301db3f968757f0d08070fd4e54 (6.x)
CVE-2019-19947 (In the Linux kernel through 5.4.6, there are information leaks of unin ...)
- - linux <unfixed>
+ - linux 5.4.8-1
NOTE: https://git.kernel.org/linus/da2311a6385c3b499da2ed5d9be59ce331fa93e9
CVE-2019-19946
RESERVED
@@ -10880,7 +10880,7 @@ CVE-2019-19065 (A memory leak in the sdma_init() function in drivers/infiniband/
CVE-2019-19064 (** DISPUTED ** A memory leak in the fsl_lpspi_probe() function in driv ...)
- linux <unfixed> (unimportant)
CVE-2019-19063 (Two memory leaks in the rtl_usb_probe() function in drivers/net/wirele ...)
- - linux <unfixed> (unimportant)
+ - linux 5.4.8-1 (unimportant)
CVE-2019-19062 (A memory leak in the crypto_report() function in crypto/crypto_user_ba ...)
- linux 5.4.6-1
CVE-2019-19061 (A memory leak in the adis_update_scan_mode_burst() function in drivers ...)
@@ -10900,7 +10900,7 @@ CVE-2019-19058 (A memory leak in the alloc_sgtable() function in drivers/net/wir
[jessie] - linux <not-affected> (Vulnerable code not present)
NOTE: https://git.kernel.org/linus/b4b814fec1a5a849383f7b3886b654a13abbda7d
CVE-2019-19057 (Two memory leaks in the mwifiex_pcie_init_evt_ring() function in drive ...)
- - linux <unfixed>
+ - linux 5.4.8-1
CVE-2019-19056 (A memory leak in the mwifiex_pcie_alloc_cmdrsp_buf() function in drive ...)
- linux <unfixed>
CVE-2019-19055 (** DISPUTED ** A memory leak in the nl80211_get_ftm_responder_stats() ...)
@@ -10972,7 +10972,7 @@ CVE-2019-19039 (** DISPUTED ** __btrfs_free_extent in fs/btrfs/extent-tree.c in
CVE-2019-19038
RESERVED
CVE-2019-19037 (ext4_empty_dir in fs/ext4/namei.c in the Linux kernel through 5.3.12 a ...)
- - linux <unfixed>
+ - linux 5.4.8-1
[jessie] - linux <not-affected> (Vulnerability introduced later)
CVE-2019-19036 (btrfs_root_node in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 ...)
- linux <unfixed>
@@ -11610,7 +11610,7 @@ CVE-2019-18782
CVE-2019-18781 (An open redirect vulnerability was discovered in Zoho ManageEngine ADS ...)
NOT-FOR-US: Zoho ManageEngine ADSelfService Plus
CVE-2019-18786 (In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitial ...)
- - linux <unfixed>
+ - linux 5.4.8-1
[stretch] - linux <not-affected> (Vulnerable code not present)
[jessie] - linux <not-affected> (Vulnerable code not present)
NOTE: https://patchwork.linuxtv.org/patch/59542/
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0786240d6e4b7641f634bc48053e4f9952581ebf
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0786240d6e4b7641f634bc48053e4f9952581ebf
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200105/cc7acc7d/attachment.html>
More information about the debian-security-tracker-commits
mailing list