[Git][security-tracker-team/security-tracker][master] lua, rust-ncurses bugs
Moritz Muehlenhoff
jmm at debian.org
Mon Oct 12 19:15:45 BST 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5570cbf6 by Moritz Muehlenhoff at 2020-10-12T20:15:10+02:00
lua, rust-ncurses bugs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -22931,7 +22931,7 @@ CVE-2020-15889 (Lua through 5.4.0 has a getobjname heap-based buffer over-read b
NOTE: https://github.com/lua/lua/commit/127e7a6c8942b362aa3c6627f44d660a4fb75312
NOTE: Introduced in 5.4
CVE-2020-15888 (Lua through 5.4.0 mishandles the interaction between stack resizes and ...)
- - lua5.4 <unfixed>
+ - lua5.4 <unfixed> (bug #972101)
NOTE: http://lua-users.org/lists/lua-l/2020-07/msg00053.html
NOTE: http://lua-users.org/lists/lua-l/2020-07/msg00054.html
NOTE: http://lua-users.org/lists/lua-l/2020-07/msg00071.html
@@ -75960,10 +75960,10 @@ CVE-2019-15550 (An issue was discovered in the simd-json crate before 0.1.15 for
CVE-2019-15549 (An issue was discovered in the asn1_der crate before 0.6.2 for Rust. A ...)
NOT-FOR-US: Rust crate asn1_der
CVE-2019-15548 (An issue was discovered in the ncurses crate through 5.99.0 for Rust. ...)
- - rust-ncurses <unfixed>
+ - rust-ncurses <unfixed> (bug #972100)
NOTE: https://rustsec.org/advisories/RUSTSEC-2019-0006.html
CVE-2019-15547 (An issue was discovered in the ncurses crate through 5.99.0 for Rust. ...)
- - rust-ncurses <unfixed>
+ - rust-ncurses <unfixed> (bug #972100)
NOTE: https://rustsec.org/advisories/RUSTSEC-2019-0006.html
CVE-2019-15546 (An issue was discovered in the pancurses crate through 0.16.1 for Rust ...)
NOT-FOR-US: Rust crate pancurses
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5570cbf6dd2449a83184efe3efe34ff62c73fa61
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5570cbf6dd2449a83184efe3efe34ff62c73fa61
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201012/ce5d84ec/attachment.html>
More information about the debian-security-tracker-commits
mailing list