Reference upstream commit for CVE-2019-18932/sarg

author: Salvatore Bonaccorso <carnil@debian.org> 2020-01-27 10:50:46 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-01-27 10:51:35 +0100
commit: 49bdb3b52e49215ff010aa0e62efc83b53ad63f8 (patch)
tree: dbf336270137e5dde1912d0d882bfe9b2a1d2dd3 /data
parent: ee086ecf306074d40a50ae749b8549a900ddb866 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 698877b240..f609fb185a 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -16812,6 +16812,7 @@ CVE-2019-18932 (log.c in Squid Analysis Report Generator (sarg) through 2.3.11 a
 	NOTE: https://www.openwall.com/lists/oss-security/2020/01/20/6
 	NOTE: The sarg-reports as shipped in Debian has already safe use of mktemp for
 	NOTE: use of temporary files and directories.
+	NOTE: Fixed by: https://sourceforge.net/p/sarg/code/ci/8ec6d20be8c0da3c885aba78e63251f2e5080748
 CVE-2019-18931 (Western Digital My Cloud EX2 Ultra firmware 2.31.195 allows a Buffer O ...)
 	NOT-FOR-US: Western Digital My Cloud EX2 Ultra firmware
 CVE-2019-18930 (Western Digital My Cloud EX2 Ultra firmware 2.31.183 allows web users  ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-01-27 10:50:46 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-01-27 10:51:35 +0100
commit	49bdb3b52e49215ff010aa0e62efc83b53ad63f8 (patch)
tree	dbf336270137e5dde1912d0d882bfe9b2a1d2dd3 /data
parent	ee086ecf306074d40a50ae749b8549a900ddb866 (diff)