[Git][security-tracker-team/security-tracker][master] Add CVE-2019-18625/suricata

Tue Jan 7 09:27:06 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2bed9319 by Salvatore Bonaccorso at 2020-01-07T10:26:32+01:00
Add CVE-2019-18625/suricata

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15105,7 +15105,11 @@ CVE-2018-21029 (** DISPUTED ** systemd 239 through 244 accepts any certificate s
 	[jessie] - systemd <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/systemd/systemd/issues/9397
 CVE-2019-18625 (An issue was discovered in Suricata 5.0.0. It was possible to bypass/e ...)
-	TODO: check
+	- suricata <unfixed>
+	NOTE: https://github.com/OISF/suricata/commit/9f0294fadca3dcc18c919424242a41e01f3e8318 (suricata-5.0.1)
+	NOTE: https://github.com/OISF/suricata/commit/ea0659de7640cf6a51de5bbd1dbbb0414e4623a0 (master-4.1.x)
+	NOTE: https://redmine.openinfosecfoundation.org/issues/3286
+	NOTE: https://redmine.openinfosecfoundation.org/issues/3395
 CVE-2019-18624 (Opera Mini for Android allows attackers to bypass intended restriction ...)
 	NOT-FOR-US: Opera Mini for Android
 CVE-2019-18623 (Escalation of privileges in EnergyCAP 7 through 7.5.6 allows an attack ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2bed9319cf500b8f71214ede7a700bc9d72ba0dd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2bed9319cf500b8f71214ede7a700bc9d72ba0dd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200107/fb825364/attachment.html>
