Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
53cb0e75 by Salvatore Bonaccorso at 2020-09-05T15:54:23+02:00
Correct tracking for CVE-2019-13389/rainloop
The CVE was marked as NFU earlier. But there is src:rainloop for the
Rainloop Webmail. The issue was already fixed with the 1.14.0-1 upload
to unstable.
Fixes: 10cf9cb957ad ("Process NFUs")
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -79918,7 +79918,8 @@ CVE-2019-13390 (In FFmpeg 4.1.3, there is a division by
zero at adx_write_traile
NOTE: https://trac.ffmpeg.org/ticket/7979
NOTE:
https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=aef24efb0c1e65097ab77a4bf9264189bdf3ace3
CVE-2019-13389 (RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms
such as ...)
- NOT-FOR-US: RainLoop Webmail
+ - rainloop 1.14.0-1
+ NOTE:
https://github.com/RainLoop/rainloop-webmail/commit/8eb4588917b4741889fdd905d4c32e3e86317693
CVE-2019-13388
RESERVED
CVE-2019-13387 (In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.846,
Reflected ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53cb0e75d1406f2e9f01dbfe77ef107ae7e04ac4
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/53cb0e75d1406f2e9f01dbfe77ef107ae7e04ac4
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
