[Git][security-tracker-team/security-tracker][master] Reference set of commits for CVE-2019-20892/net-snmp

Salvatore Bonaccorso carnil at debian.org
Thu Jun 25 22:17:29 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
906c0c8e by Salvatore Bonaccorso at 2020-06-25T23:16:48+02:00
Reference set of commits for CVE-2019-20892/net-snmp

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -784,7 +784,12 @@ CVE-2019-20892 (net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStat
 	- net-snmp <unfixed> (bug #963713)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/06/25/4
 	NOTE: https://bugs.launchpad.net/ubuntu/+source/net-snmp/+bug/1877027
-	TODO: check details, unclear yet affected range
+	NOTE: https://github.com/net-snmp/net-snmp/commit/92ccd5a82a019fbfa835cc8ab2294cf0ca48c8f2
+	NOTE: https://github.com/net-snmp/net-snmp/commit/adc9b71aba9168ec64149345ea37a1acc11875c6
+	NOTE: https://github.com/net-snmp/net-snmp/commit/7384a8b550d4ed4a00e41b72229cfcc124926b06
+	NOTE: https://github.com/net-snmp/net-snmp/commit/39381c4d20dd8042870c28ae3b0c16291e50b705
+	NOTE: https://github.com/net-snmp/net-snmp/commit/5f881d3bf24599b90d67a45cae7a3eb099cd71c9
+	NOTE: https://github.com/net-snmp/net-snmp/commit/87bd90d04f20dd3f73e3e7e631a442ccd419b9d3
 CVE-2019-20891 (WooCommerce before 3.6.5, when it handles CSV imports of products, has ...)
 	NOT-FOR-US: WooCommerce
 CVE-2020-14929 (Alpine before 2.23 silently proceeds to use an insecure connection aft ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/906c0c8ed89811247300c923b8c8e755ec3b5109

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/906c0c8ed89811247300c923b8c8e755ec3b5109
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200625/a10178ac/attachment.html>

More information about the debian-security-tracker-commits mailing list