Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
21f01e0a by Salvatore Bonaccorso at 2019-09-22T08:06:32Z
Update status for CVE-2019-1622{4,5,6,7,8}
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1229,25 +1229,30 @@ CVE-2019-16229
(drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c in the Linux kernel 5
NOTE: Requires memory allocation failure during device probe, so
unlikely to
NOTE: be exploitable, and then it's only a local DoS.
CVE-2019-16228 (An issue was discovered in py-lmdb 0.97. There is a
divide-by-zero err ...)
- - py-lmdb <undetermined>
+ - py-lmdb <unfixed> (unimportant)
NOTE: https://github.com/jnwatson/py-lmdb/issues/210
- TODO: check
+ NOTE: No real security issue in py-lmdb and disputed (MITRE contacted).
If at all
+ NOTE: then issues in underlying library but cf.
https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531015023
CVE-2019-16227 (An issue was discovered in py_lmdb 0.97. For certain values of
mn_flag ...)
- - py-lmdb <undetermined>
+ - py-lmdb <unfixed> (unimportant)
NOTE: https://github.com/jnwatson/py-lmdb/issues/210
- TODO: check
+ NOTE: No real security issue in py-lmdb and disputed (MITRE contacted).
If at all
+ NOTE: then issues in underlying library but cf.
https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531015023
CVE-2019-16226 (An issue was discovered in py-lmdb 0.97. mdb_node_del does not
validat ...)
- - py-lmdb <undetermined>
+ - py-lmdb <unfixed> (unimportant)
NOTE: https://github.com/jnwatson/py-lmdb/issues/210
- TODO: check
+ NOTE: No real security issue in py-lmdb and disputed (MITRE contacted).
If at all
+ NOTE: then issues in underlying library but cf.
https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531015023
CVE-2019-16225 (An issue was discovered in py-lmdb 0.97. For certain values of
mp_flag ...)
- - py-lmdb <undetermined>
+ - py-lmdb <unfixed> (unimportant)
NOTE: https://github.com/jnwatson/py-lmdb/issues/210
- TODO: check
+ NOTE: No real security issue in py-lmdb and disputed (MITRE contacted).
If at all
+ NOTE: then issues in underlying library but cf.
https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531015023
CVE-2019-16224 (An issue was discovered in py-lmdb 0.97. For certain values of
md_flag ...)
- - py-lmdb <undetermined>
+ - py-lmdb <unfixed> (unimportant)
NOTE: https://github.com/jnwatson/py-lmdb/issues/210
- TODO: check
+ NOTE: No real security issue in py-lmdb and disputed (MITRE contacted).
If at all
+ NOTE: then issues in underlying library but cf.
https://github.com/jnwatson/py-lmdb/issues/210#issuecomment-531015023
CVE-2019-16223 (WordPress before 5.2.3 allows XSS in post previews by
authenticated us ...)
- wordpress 5.2.3+dfsg1-1 (bug #939543)
CVE-2019-16222 (WordPress before 5.2.3 has an issue with URL sanitization in
wp_kses_b ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/21f01e0a6948f1c69d4d59a85259b6438dc2a331
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/21f01e0a6948f1c69d4d59a85259b6438dc2a331
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
