[Git][security-tracker-team/security-tracker][master] mutt DSA
Moritz Muehlenhoff
jmm at debian.org
Fri Jun 19 21:37:51 BST 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8414e967 by Moritz Muehlenhoff at 2020-06-19T22:37:32+02:00
mutt DSA
node-elliptic no-dsa
- - - - -
2 changed files:
- data/CVE/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1895,6 +1895,7 @@ CVE-2020-14155 (libpcre in PCRE before 8.44 allows an integer overflow via a lar
NOTE: Fixed by: https://vcs.pcre.org/pcre?view=revision&revision=1761 (8.44)
CVE-2020-14154 (Mutt before 1.14.3 proceeds with a connection even if, in response to ...)
- mutt 1.14.3-1 (unimportant)
+ [buster] - mutt 1.10.1-2.1+deb10u1
- neomutt 20200619+dfsg.1-1 (unimportant)
NOTE: http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200608/000022.html
NOTE: https://gitlab.com/muttmua/mutt/commit/bb0e6277a45a5d4c3a30d3b968eeb31d78124e95
@@ -2688,6 +2689,7 @@ CVE-2020-13823
RESERVED
CVE-2020-13822 (The Elliptic package 6.5.2 for Node.js allows ECDSA signature malleabi ...)
- node-elliptic 6.5.3~dfsg-1 (bug #963149)
+ [buster] - node-elliptic <no-dsa> (Minor issue)
NOTE: https://github.com/indutny/elliptic/issues/226
CVE-2020-13821
RESERVED
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,6 @@
+[19 Jun 2020] DSA-4707-1 mutt - security update
+ [stretch] - mutt 1.7.2-1+deb9u3
+ [buster] - mutt 1.10.1-2.1+deb10u2
[18 Jun 2020] DSA-4706-1 drupal7 - security update
{CVE-2020-13663}
[stretch] - drupal7 7.52-2+deb9u11
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8414e9671991f4b4272a9f71dbaccf3dba948de8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8414e9671991f4b4272a9f71dbaccf3dba948de8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200619/cca0a939/attachment.html>
More information about the debian-security-tracker-commits
mailing list