[Git][security-tracker-team/security-tracker][master] Add new issues for py-lmdb (CVE-2019-1622{4,5,6,7,8)

Thu, 12 Sep 2019 14:03:55 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
571591f7 by Salvatore Bonaccorso at 2019-09-12T20:58:52Z
Add new issues for py-lmdb (CVE-2019-1622{4,5,6,7,8)

Mark those as undetermned for now. Apparently upstream was not notified
about the issues, cf.
https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531004224 .

Wait for upstream investigation on
https://github.com/jnwatson/py-lmdb/issues/210 .

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -187,14 +187,24 @@ CVE-2019-16229 
(drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c in the Linux kernel 5
        - linux <unfixed>
        NOTE: https://lkml.org/lkml/2019/9/9/487
 CVE-2019-16228 (An issue was discovered in py-lmdb 0.97. There is a 
divide-by-zero err ...)
+       - py-lmdb <undetermined>
+       NOTE: https://github.com/jnwatson/py-lmdb/issues/210
        TODO: check
 CVE-2019-16227 (An issue was discovered in py_lmdb 0.97. For certain values of 
mn_flag ...)
+       - py-lmdb <undetermined>
+       NOTE: https://github.com/jnwatson/py-lmdb/issues/210
        TODO: check
 CVE-2019-16226 (An issue was discovered in py-lmdb 0.97. mdb_node_del does not 
validat ...)
+       - py-lmdb <undetermined>
+       NOTE: https://github.com/jnwatson/py-lmdb/issues/210
        TODO: check
 CVE-2019-16225 (An issue was discovered in py-lmdb 0.97. For certain values of 
mp_flag ...)
+       - py-lmdb <undetermined>
+       NOTE: https://github.com/jnwatson/py-lmdb/issues/210
        TODO: check
 CVE-2019-16224 (An issue was discovered in py-lmdb 0.97. For certain values of 
md_flag ...)
+       - py-lmdb <undetermined>
+       NOTE: https://github.com/jnwatson/py-lmdb/issues/210
        TODO: check
 CVE-2019-16223 (WordPress before 5.2.3 allows XSS in post previews by 
authenticated us ...)
        - wordpress 5.2.3+dfsg1-1 (bug #939543)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/571591f73828d9d149b7a29181956145ed586cb9

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/571591f73828d9d149b7a29181956145ed586cb9
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to