[Git][security-tracker-team/security-tracker][master] LTS: triage CVE-2019-10784/phppgadmin for jessie, follow stretch/buster decision

Sun Mar 22 18:28:01 GMT 2020


Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dfa6f603 by Roberto C. Sánchez at 2020-03-22T14:27:31-04:00
LTS: triage CVE-2019-10784/phppgadmin for jessie, follow stretch/buster decision

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -51784,6 +51784,7 @@ CVE-2019-10784 (phppgadmin through 7.12.1 allows sensitive actions to be perform
 	- phppgadmin <unfixed> (bug #953945)
 	[buster] - phppgadmin <no-dsa> (Minor issue)
 	[stretch] - phppgadmin <no-dsa> (Minor issue)
+	[jessie] - phppgadmin <no-dsa> (Minor issue)
 	NOTE: https://snyk.io/vuln/SNYK-PHP-PHPPGADMINPHPPGADMIN-543885
 	NOTE: https://github.com/phppgadmin/phppgadmin/issues/94
 CVE-2019-10783 (All versions including 0.0.4 of lsof npm module are vulnerable to Comm ...)


=====================================
data/dla-needed.txt
=====================================
@@ -56,9 +56,6 @@ opendmarc (Thorsten Alteholz)
 --
 php5 (Thorsten Alteholz)
 --
-phppgadmin
-  NOTE: 20200316: CVE-2019-10784: upstream bug opened, no fix yet; wide usage
---
 qtbase-opensource-src (Mike Gabriel)
   NOTE: 20200224: No upstream fix available, yet. (sunweaver)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfa6f603b2ce4a430a45e0a09be2d7d1446b7a7f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfa6f603b2ce4a430a45e0a09be2d7d1446b7a7f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200322/2999fd7c/attachment.html>
