[Git][security-tracker-team/security-tracker][master] Add note for CVE-2019-15680
Salvatore Bonaccorso
carnil at debian.org
Sun Mar 15 13:36:23 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8cd46568 by Salvatore Bonaccorso at 2020-03-15T14:35:12+01:00
Add note for CVE-2019-15680
In libvncserver's case at least according the discussiion in [1] this
might be an non-issue. The issue was already marked unimportant for
libvncserver earlier, thus for now retain the references.
[1] https://github.com/LibVNC/libvncserver/issues/359#issuecomment-599202068
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35342,6 +35342,7 @@ CVE-2019-15680 (TightVNC code version 1.3.10 contains null pointer dereference i
- libvncserver <unfixed> (unimportant)
NOTE: https://www.openwall.com/lists/oss-security/2018/12/10/5
NOTE: https://github.com/sunweaver/libvncserver/commit/85d00057b5daf71675462c9b175d8cb2d47cd0e1
+ NOTE: Non-issue in libvncserver's case: https://github.com/LibVNC/libvncserver/issues/359#issuecomment-599202068
CVE-2019-15679 (TightVNC code version 1.3.10 contains heap buffer overflow in Initiali ...)
{DLA-2045-1}
- tightvnc 1:1.3.9-9.1 (bug #945364)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8cd46568d7d991c37a97570cec4a4b52aaa94e5a
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8cd46568d7d991c37a97570cec4a4b52aaa94e5a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200315/43d38763/attachment.html>
More information about the debian-security-tracker-commits
mailing list