[Git][security-tracker-team/security-tracker][master] CVE-2019-17177/freerdp: stretch not-affected

Sat Dec 16 11:55:03 GMT 2023


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
ca2d07d3 by Sylvain Beucler at 2023-12-16T12:54:38+01:00
CVE-2019-17177/freerdp: stretch not-affected

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -302140,10 +302140,11 @@ CVE-2019-17177 (libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x throu
 	- freerdp2 2.0.0~git20190204.1.2693389a+dfsg1-2 (low)
 	[buster] - freerdp2 2.0.0~git20190204.1.2693389a+dfsg1-1+deb10u1
 	- freerdp <removed> (low)
-	[stretch] - freerdp <no-dsa> (Minor issue)
+	[stretch] - freerdp <not-affected> (Vulnerable code not present)
 	[jessie] - freerdp <ignored> (Minor issue; Patching this old version would be very invasive; no upstream patch available)
 	NOTE: https://github.com/FreeRDP/FreeRDP/issues/5645
 	NOTE: https://github.com/FreeRDP/FreeRDP/commit/9fee4ae076b1ec97b97efb79ece08d1dab4df29a (v2.0.0)
+	NOTE: Introduced by: https://github.com/FreeRDP/FreeRDP/commit/d1e75efb8c8822716aaf41acd3a947d0641e9b21 (1.2.0-beta1+android7)
 CVE-2019-17176 (Genesys PureEngage Digital (eServices) 8.1.x allows XSS via HtmlChatPa ...)
 	NOT-FOR-US: Genesys PureEngage Digital (eServices)
 CVE-2019-17175 (joyplus-cms 1.6.0 allows manager/admin_pic.php?rootpath= absolute path ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca2d07d3efe0d2cbecca57485a0b807e83216ce5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ca2d07d3efe0d2cbecca57485a0b807e83216ce5
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231216/5bb8c1f0/attachment.htm>
