Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
df0ba219 by Salvatore Bonaccorso at 2019-12-22T10:47:31Z
Add CVE-2019-1923{2,4}/sudo
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6238,11 +6238,17 @@ CVE-2019-19236
CVE-2019-19235 (AsLdrSrv.exe in ASUS ATK Package before V1.0.0061 (for Windows
10 note ...)
NOT-FOR-US: ASUS
CVE-2019-19234 (In Sudo through 1.8.29, the fact that a user has been blocked
(e.g., b ...)
- TODO: check
+ - sudo <unfixed>
+ [buster] - sudo <no-dsa> (Minor issue)
+ [stretch] - sudo <no-dsa> (Minor issue)
+ NOTE: https://www.sudo.ws/devel.html#1.8.30b2
CVE-2019-19233
RESERVED
CVE-2019-19232 (In Sudo through 1.8.29, an attacker with access to a Runas ALL
sudoer ...)
- TODO: check
+ - sudo <unfixed>
+ [buster] - sudo <no-dsa> (Minor issue)
+ [stretch] - sudo <no-dsa> (Minor issue)
+ NOTE: https://www.sudo.ws/devel.html#1.8.30b2
CVE-2019-19231 (An insecure file access vulnerability exists in CA Client
Automation 1 ...)
NOT-FOR-US: CA Client Automation
CVE-2019-19230 (An unsafe deserialization vulnerability exists in CA Release
Automatio ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/df0ba219fcc09d0aebeaff29bec6e8c417f44e83
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/df0ba219fcc09d0aebeaff29bec6e8c417f44e83
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
