[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-508{6,7}/xcftools as no-dsa

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a2bdb3f0 by Salvatore Bonaccorso at 2021-02-28T13:35:28+01:00
Mark CVE-2019-508{6,7}/xcftools as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -140373,11 +140373,13 @@ CVE-2019-5088 (An exploitable memory corruption 
vulnerability exists in Investin
 CVE-2019-5087 (An exploitable integer overflow vulnerability exists in the 
flattenInc ...)
        {DLA-2553-1}
        - xcftools 1.0.7-6.1 (bug #945317)
+       [buster] - xcftools <no-dsa> (Minor issue; can be fixed via point 
release)
        NOTE: https://github.com/j-jorge/xcftools/issues/13
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0879
 CVE-2019-5086 (An exploitable integer overflow vulnerability exists in the 
flattenInc ...)
        {DLA-2553-1}
        - xcftools 1.0.7-6.1 (bug #945317)
+       [buster] - xcftools <no-dsa> (Minor issue; can be fixed via point 
release)
        NOTE: https://github.com/j-jorge/xcftools/issues/12
        NOTE: 
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0878
 CVE-2019-5085 (An exploitable code execution vulnerability exists in the DICOM 
packet ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2bdb3f0dd0b280175a387c628d64597cb6f412f

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a2bdb3f0dd0b280175a387c628d64597cb6f412f
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits