Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bb6536a2 by Salvatore Bonaccorso at 2019-11-26T20:20:01Z
Add fixed version for CVE-2019-19271/proftpd-dfsg
The issue was fixed in 1.3.6 (and verified between 1.3.5e-1 and 1.3.6-1
versions in Debian).
As such the fix is as well already present in buster, thus removing the
no-dsa tagged entry.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -82,8 +82,7 @@ CVE-2019-19272 (An issue was discovered in tls_verify_crl in
ProFTPD before 1.3.
[stretch] - proftpd-dfsg <no-dsa> (Minor issue)
NOTE: https://github.com/proftpd/proftpd/issues/858
CVE-2019-19271 (An issue was discovered in tls_verify_crl in ProFTPD before
1.3.6. A w ...)
- - proftpd-dfsg <unfixed>
- [buster] - proftpd-dfsg <no-dsa> (Minor issue)
+ - proftpd-dfsg 1.3.6-1
[stretch] - proftpd-dfsg <no-dsa> (Minor issue)
NOTE: https://github.com/proftpd/proftpd/issues/860
CVE-2019-19270 (An issue was discovered in tls_verify_crl in ProFTPD through
1.3.6b. F ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/bb6536a2081507a85ea4bc8c5c18ee5d5a479ed7
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/bb6536a2081507a85ea4bc8c5c18ee5d5a479ed7
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
