automatic update

author: security tracker role <sectracker@soriano.debian.org> 2020-09-11 20:10:22 +0000
committer: security tracker role <sectracker@soriano.debian.org> 2020-09-11 20:10:22 +0000
commit: c0eab4ecd827b3e2edc35310b3857b8ba4e24a1a (patch)
tree: faf073a2a508fa621a1da7ce3efb15883b7686ec /data/CVE/2019.list
parent: 42635263d474647ab0b57738879c74131ed4d6e6 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index e345057e85..747b680d9d 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -22,6 +22,7 @@ CVE-2019-XXXX [RUSTSEC-2020-0036: type confusion when downcasting]
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2020-0036.html
 	NOTE: https://github.com/rust-lang-nursery/failure/issues/336
 CVE-2019-20916 (The pip package before 19.2 for Python allows Directory Traversal when ...)
+	{DLA-2370-1}
 	- python-pip 20.0.2-1
 	NOTE: https://github.com/pypa/pip/issues/6413
 	NOTE: https://github.com/pypa/pip/commit/a4c735b14a62f9cb864533808ac63936704f2ace (19.2)
@@ -8306,7 +8307,7 @@ CVE-2019-17671 (In WordPress before 5.2.4, unauthenticated viewing of certain co
 	NOTE: https://core.trac.wordpress.org/changeset/46474
 	NOTE: https://github.com/WordPress/WordPress/commit/f82ed753cf00329a5e41f2cb6dc521085136f308
 CVE-2019-17670 (WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulner ...)
-	{DLA-1980-1}
+	{DLA-2371-1 DLA-1980-1}
 	- wordpress 5.2.4+dfsg1-1 (bug #942459)
 	[buster] - wordpress <no-dsa> (Minor issue)
 	NOTE: https://blog.wpscan.org/wordpress/security/release/2019/10/15/wordpress-524-security-release-breakdown.html
author	security tracker role <sectracker@soriano.debian.org>	2020-09-11 20:10:22 +0000
committer	security tracker role <sectracker@soriano.debian.org>	2020-09-11 20:10:22 +0000
commit	c0eab4ecd827b3e2edc35310b3857b8ba4e24a1a (patch)
tree	faf073a2a508fa621a1da7ce3efb15883b7686ec /data/CVE/2019.list
parent	42635263d474647ab0b57738879c74131ed4d6e6 (diff)