Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 8ee1fd74 by Salvatore Bonaccorso at 2020-06-15T22:47:53+02:00 Add CVE-2018-21246/caddy - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -146,7 +146,7 @@ CVE-2019-20838 (libpcre in PCRE before 8.43 allows a subject buffer over-read in - pcre3 <unfixed> NOTE: Fixed by: https://vcs.pcre.org/pcre?view=revision&revision=1740 (8.43) CVE-2018-21246 (Caddy before 0.10.13 mishandles TLS client authentication, as demonstr ...) - TODO: check + - caddy <itp> (bug #810890) CVE-2018-21245 (Pound before 2.8 allows HTTP request smuggling, a related issue to CVE ...) TODO: check CVE-2017-18869 (A TOCTOU issue in the chownr package before 1.1.0 for Node.js 10.10 co ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ee1fd745af7783e8109f9dfeea2f3eae8202548 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8ee1fd745af7783e8109f9dfeea2f3eae8202548 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits