[Git][security-tracker-team/security-tracker][master] 2 commits: Correct version for phpmyadmin in DLA-2413-1
Salvatore Bonaccorso
carnil at debian.org
Sun Oct 25 11:56:20 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e38bb9d4 by Salvatore Bonaccorso at 2020-10-25T12:54:50+01:00
Correct version for phpmyadmin in DLA-2413-1
There was a missing epoch fo the used version.
- - - - -
cec565a3 by Salvatore Bonaccorso at 2020-10-25T12:55:39+01:00
Remove no-dsa tagged entry which got an update in DLA-2413-1
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -61580,7 +61580,6 @@ CVE-2019-19618
CVE-2019-19617 (phpMyAdmin before 4.9.2 does not escape certain Git information, relat ...)
{DLA-2024-1}
- phpmyadmin 4:4.9.2+dfsg1-1
- [stretch] - phpmyadmin <no-dsa> (Minor issue)
NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/1119de642b136d20e810bb20f545069a01dd7cc9
CVE-2019-19616 (An Insecure Direct Object Reference (IDOR) vulnerability in the Xtivia ...)
NOT-FOR-US: Microsoft Dynamics NAV
=====================================
data/DLA/list
=====================================
@@ -1,6 +1,6 @@
[25 Oct 2020] DLA-2413-1 phpmyadmin - security update
{CVE-2019-19617 CVE-2020-26934 CVE-2020-26935}
- [stretch] - phpmyadmin 4.6.6-4+deb9u2
+ [stretch] - phpmyadmin 4:4.6.6-4+deb9u2
[23 Oct 2020] DLA-2412-1 openjdk-8 - security update
{CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803}
[stretch] - openjdk-8 8u272-b10-0+deb9u1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/de9cde14f96ccb0be6be31115541e9f48215f55b...cec565a3a35a2a3f5c6d255183763e6e1c7fef35
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/de9cde14f96ccb0be6be31115541e9f48215f55b...cec565a3a35a2a3f5c6d255183763e6e1c7fef35
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201025/4991f970/attachment.html>
More information about the debian-security-tracker-commits
mailing list