[Git][security-tracker-team/security-tracker][master] opensc bugs
Moritz Muehlenhoff
jmm at debian.org
Sun Oct 11 18:15:54 BST 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
acc1453c by Moritz Muehlenhoff at 2020-10-11T19:15:17+02:00
opensc bugs
older undertow issue fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -788,13 +788,13 @@ CVE-2019-20923
CVE-1999-0199 (manual/search.texi in the GNU C Library (aka glibc) before 2.2 lacks a ...)
- glibc 2.2-1
CVE-2020-26572 (The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a ...)
- - opensc <unfixed>
+ - opensc <unfixed> (bug #972035)
[buster] - opensc <no-dsa> (Minor issue)
[stretch] - opensc <no-dsa> (Minor issue)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=22967
NOTE: https://github.com/OpenSC/OpenSC/commit/9d294de90d1cc66956389856e60b6944b27b4817
CVE-2020-26571 (The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 ...)
- - opensc <unfixed>
+ - opensc <unfixed> (bug #972036)
[buster] - opensc <no-dsa> (Minor issue)
[stretch] - opensc <no-dsa> (Minor issue)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20612
@@ -78197,7 +78197,7 @@ CVE-2019-14889 (A flaw was found with the libssh API function ssh_scp_new() in v
NOTE: https://bugs.debian.org/947129
NOTE: https://code.x2go.org/gitweb?p=x2goclient.git;a=commitdiff;h=ce559d163a943737fe4160f7233925df2eee1f9a
CVE-2019-14888 (A vulnerability was found in the Undertow HTTP server in versions befo ...)
- - undertow <undetermined>
+ - undertow 2.0.28-1
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1772464
CVE-2019-14887 (A flaw was found when an OpenSSL security provider is used with Wildfl ...)
- wildfly <itp> (bug #752018)
@@ -133634,16 +133634,16 @@ CVE-2018-15163
CVE-2018-15162
RESERVED
CVE-2018-15161 (** DISPUTED ** The libesedb_key_append_data function in libesedb_key.c ...)
- - libesedb <undetermined>
+ NOTE: Disputed libesedb issues
NOTE: https://github.com/libyal/libesedb/issues/43
CVE-2018-15160 (** DISPUTED ** The libesedb_catalog_definition_read function in libese ...)
- - libesedb <undetermined>
+ NOTE: Disputed libesedb issues
NOTE: https://github.com/libyal/libesedb/issues/43
CVE-2018-15159 (** DISPUTED ** The libesedb_page_read_tags function in libesedb_page.c ...)
- - libesedb <undetermined>
+ NOTE: Disputed libesedb issues
NOTE: https://github.com/libyal/libesedb/issues/43
CVE-2018-15158 (** DISPUTED ** The libesedb_page_read_values function in libesedb_page ...)
- - libesedb <undetermined>
+ NOTE: Disputed libesedb issues
NOTE: https://github.com/libyal/libesedb/issues/43
CVE-2018-15157 (** DISPUTED ** The libfsclfs_block_read function in libfsclfs_block.c ...)
NOT-FOR-US: libfsclfs
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acc1453cff2e3eaaee2ce4eebe420f8ae6921358
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/acc1453cff2e3eaaee2ce4eebe420f8ae6921358
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201011/197b3a01/attachment.html>
More information about the debian-security-tracker-commits
mailing list