[Git][security-tracker-team/security-tracker][master] 2 commits: Correct version for phpmyadmin in DLA-2413-1

Salvatore Bonaccorso carnil at debian.org
Sun Oct 25 11:56:20 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e38bb9d4 by Salvatore Bonaccorso at 2020-10-25T12:54:50+01:00
Correct version for phpmyadmin in DLA-2413-1

There was a missing epoch fo the used version.

- - - - -
cec565a3 by Salvatore Bonaccorso at 2020-10-25T12:55:39+01:00
Remove no-dsa tagged entry which got an update in DLA-2413-1

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -61580,7 +61580,6 @@ CVE-2019-19618
 CVE-2019-19617 (phpMyAdmin before 4.9.2 does not escape certain Git information, relat ...)
 	{DLA-2024-1}
 	- phpmyadmin 4:4.9.2+dfsg1-1
-	[stretch] - phpmyadmin <no-dsa> (Minor issue)
 	NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/1119de642b136d20e810bb20f545069a01dd7cc9
 CVE-2019-19616 (An Insecure Direct Object Reference (IDOR) vulnerability in the Xtivia ...)
 	NOT-FOR-US: Microsoft Dynamics NAV


=====================================
data/DLA/list
=====================================
@@ -1,6 +1,6 @@
 [25 Oct 2020] DLA-2413-1 phpmyadmin - security update
 	{CVE-2019-19617 CVE-2020-26934 CVE-2020-26935}
-	[stretch] - phpmyadmin 4.6.6-4+deb9u2
+	[stretch] - phpmyadmin 4:4.6.6-4+deb9u2
 [23 Oct 2020] DLA-2412-1 openjdk-8 - security update
 	{CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803}
 	[stretch] - openjdk-8 8u272-b10-0+deb9u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/de9cde14f96ccb0be6be31115541e9f48215f55b...cec565a3a35a2a3f5c6d255183763e6e1c7fef35

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/de9cde14f96ccb0be6be31115541e9f48215f55b...cec565a3a35a2a3f5c6d255183763e6e1c7fef35
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201025/4991f970/attachment.html>

More information about the debian-security-tracker-commits mailing list