diff options
author | Markus Koschany <apo@debian.org> | 2019-07-06 18:21:25 +0200 |
---|---|---|
committer | Markus Koschany <apo@debian.org> | 2019-07-06 18:21:25 +0200 |
commit | 851f04f376302adf93dec320f1091a7f7369b372 (patch) | |
tree | 50b0b542aa0915b2a69f0f39f69203a6d6048a66 | |
parent | b7e5ce08787e264e20aeca569885c62e58f7a21c (diff) |
CVE-2019-7165,CVE-2019-12594,dosbox: Link to fixing commits.
-rw-r--r-- | data/CVE/list | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list index c5dff2c43d..6d9ffdafab 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -1913,6 +1913,8 @@ CVE-2019-12594 (DOSBox 0.74-2 has Incorrect Access Control. ...) - dosbox <unfixed> (bug #931222) NOTE: Fixed in 0.74-3 upstream. NOTE: https://github.com/Alexandre-Bartel/CVE-2019-12594 + NOTE: Upstream clarification https://sourceforge.net/p/dosbox/bugs/508/ + NOTE: Fixed by https://sourceforge.net/p/dosbox/code-0/4246/ CVE-2019-12593 (IceWarp Mail Server through 10.4.4 is prone to a local file inclusion ...) NOT-FOR-US: IceWarp Mail Server CVE-2019-12592 (A universal Cross-site scripting (UXSS) vulnerability in the Evernote ...) @@ -16545,6 +16547,8 @@ CVE-2019-7166 CVE-2019-7165 (A buffer overflow in DOSBox 0.74-2 allows attackers to execute arbitra ...) - dosbox <unfixed> (bug #931222) NOTE: Fixed in 0.74-3 upstream. + NOTE: Upstream clarification https://sourceforge.net/p/dosbox/bugs/508/ + NOTE: Fixed by https://sourceforge.net/p/dosbox/code-0/3925/ CVE-2019-7164 (SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injecti ...) {DLA-1718-1} [experimental] - sqlalchemy 1.3.0~b3+ds1-1 |