[Git][security-tracker-team/security-tracker][master] CVE-2020-9497 and CVE-2020-9498 are fixed in 1.3.0-1

[Adrian Bunk]

Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8590d26b by Adrian Bunk at 2021-02-03T20:15:53+02:00
CVE-2020-9497 and CVE-2020-9498 are fixed in 1.3.0-1

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -70261,13 +70261,13 @@ CVE-2020-9499 (Some Dahua products have buffer overflow vulnerabilities. After t
 	NOT-FOR-US: Dahua
 CVE-2020-9498 (Apache Guacamole 1.1.0 and older may mishandle pointers involved inpro ...)
 	{DLA-2435-1}
-	- guacamole-server <unfixed> (bug #964195)
+	- guacamole-server 1.3.0-1 (bug #964195)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/07/02/3
 	NOTE: https://research.checkpoint.com/2020/apache-guacamole-rce/
 	NOTE: Fixed by https://github.com/apache/guacamole-server/commit/a0e11dc81727528224d28466903454e1cb0266bb
 CVE-2020-9497 (Apache Guacamole 1.1.0 and older do not properly validate datareceived ...)
 	{DLA-2435-1}
-	- guacamole-server <unfixed> (bug #964195)
+	- guacamole-server 1.3.0-1 (bug #964195)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/07/02/2
 	NOTE: https://research.checkpoint.com/2020/apache-guacamole-rce/
 	NOTE: Fixed by https://github.com/apache/guacamole-server/commit/a0e11dc81727528224d28466903454e1cb0266bb



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8590d26bf9497ba9eee5337cf7a9536104f53856

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8590d26bf9497ba9eee5337cf7a9536104f53856
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210203/5a4bd238/attachment.html>