[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-508{6,7}/xcftools as no-dsa
Salvatore Bonaccorso
carnil at debian.org
Sun Feb 28 12:36:55 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a2bdb3f0 by Salvatore Bonaccorso at 2021-02-28T13:35:28+01:00
Mark CVE-2019-508{6,7}/xcftools as no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -140373,11 +140373,13 @@ CVE-2019-5088 (An exploitable memory corruption vulnerability exists in Investin
CVE-2019-5087 (An exploitable integer overflow vulnerability exists in the flattenInc ...)
{DLA-2553-1}
- xcftools 1.0.7-6.1 (bug #945317)
+ [buster] - xcftools <no-dsa> (Minor issue; can be fixed via point release)
NOTE: https://github.com/j-jorge/xcftools/issues/13
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0879
CVE-2019-5086 (An exploitable integer overflow vulnerability exists in the flattenInc ...)
{DLA-2553-1}
- xcftools 1.0.7-6.1 (bug #945317)
+ [buster] - xcftools <no-dsa> (Minor issue; can be fixed via point release)
NOTE: https://github.com/j-jorge/xcftools/issues/12
NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0878
CVE-2019-5085 (An exploitable code execution vulnerability exists in the DICOM packet ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2bdb3f0dd0b280175a387c628d64597cb6f412f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2bdb3f0dd0b280175a387c628d64597cb6f412f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210228/42128d3e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list