[Git][security-tracker-team/security-tracker][master] Track fixed version for two CVEs in cflow
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Dec 29 09:54:30 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1e23051b by Salvatore Bonaccorso at 2021-12-29T10:54:00+01:00
Track fixed version for two CVEs in cflow
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -159628,11 +159628,11 @@ CVE-2019-16167 (sysstat before 12.1.6 has memory corruption due to an Integer Ov
NOTE: Introduced after: https://github.com/sysstat/sysstat/commit/65ac30359e49ee717397e39950d7c24a6610d57c (v11.7.1)
NOTE: Fixed by: https://github.com/sysstat/sysstat/commit/edbf507678bf10914e9804ff8a06737fdcb2e781
CVE-2019-16166 (GNU cflow through 1.6 has a heap-based buffer over-read in the nexttok ...)
- - cflow <unfixed> (unimportant; bug #939916)
+ - cflow 1:1.6-6 (unimportant; bug #939916)
NOTE: https://lists.gnu.org/archive/html/bug-cflow/2019-04/msg00000.html
NOTE: Crash in CLI tool, no security impact
CVE-2019-16165 (GNU cflow through 1.6 has a use-after-free in the reference function i ...)
- - cflow <unfixed> (unimportant; bug #939915)
+ - cflow 1:1.6-6 (unimportant; bug #939915)
NOTE: https://lists.gnu.org/archive/html/bug-cflow/2019-04/msg00001.html
NOTE: Crash in CLI tool, no security impact
CVE-2019-16164 (MyHTML through 4.0.5 has a NULL pointer dereference in myhtml_tree_nod ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e23051b40741c9f38713b9ddd294d21d47daccc
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1e23051b40741c9f38713b9ddd294d21d47daccc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211229/1ca01bc3/attachment.htm>
More information about the debian-security-tracker-commits
mailing list