diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-28 21:06:22 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-28 21:06:22 +0100 |
| commit | 7ecad21414c9d98e27737a3381e60b11b97cc407 (patch) | |
| tree | bce9c658e9a86df96c1fea2082d58fb1fecac9f6 /data | |
| parent | 801c8c8fd7bcb40fc947a47eff8ea2c8727dfcd8 (diff) | |
Add fixed version for CVE-2019-17626/python-reportlab
Diffstat (limited to 'data')
| -rw-r--r-- | data/CVE/list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index a035aca89e..5a081a3a14 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -23318,7 +23318,7 @@ CVE-2019-17628 CVE-2019-17627 (The Yale Bluetooth Key application for mobile devices allows unauthori ...) NOT-FOR-US: Yale Bluetooth Key application for mobile devices CVE-2019-17626 (ReportLab through 3.5.26 allows remote code execution because of toCol ...) - - python-reportlab <unfixed> (bug #942763) + - python-reportlab 3.5.34-1 (bug #942763) NOTE: https://bitbucket.org/rptlab/reportlab/issues/199/eval-in-colorspy-leads-to-remote-code NOTE: https://hg.reportlab.com/hg-public/reportlab/rev/51a521ad7dd3 CVE-2019-17625 (There is a stored XSS in Rambox 0.6.9 that can lead to code execution. ...) |