[Git][security-tracker-team/security-tracker][master] 2 commits: added information about RUSTSEC-2019-0033
Salvatore Bonaccorso
carnil at debian.org
Tue Sep 8 14:01:47 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
608d7566 by Alexander Kjäll at 2020-09-08T14:44:10+02:00
added information about RUSTSEC-2019-0033
- - - - -
f1048d50 by Salvatore Bonaccorso at 2020-09-08T15:01:13+02:00
Merge branch 'capitol/security-tracker-report-rust-http' into master
See merge request security-tracker-team/security-tracker!66
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,7 @@
+CVE-2019-XXXX [RUSTSEC-2019-0033: Integer Overflow in versions below 0.1.20 can cause DoS]
+ - rust-http <unfixed> (bug #969896; low)
+ NOTE: https://rustsec.org/advisories/RUSTSEC-2019-0033.html
+ NOTE: https://github.com/hyperium/http/issues/352
CVE-2019-XXXX [RUSTSEC-2020-0036: type confusion when downcasting]
- rust-failure <unfixed> (bug #969839; low)
NOTE: https://rustsec.org/advisories/RUSTSEC-2020-0036.html
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/aff50e3bdc416c680b29818aa7a7c3911c783351...f1048d5088960aa2ec4ed60fb59370a51ca50591
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/aff50e3bdc416c680b29818aa7a7c3911c783351...f1048d5088960aa2ec4ed60fb59370a51ca50591
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200908/f5759639/attachment.html>
More information about the debian-security-tracker-commits
mailing list