diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-28 21:06:22 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-01-28 21:06:22 +0100 |
commit | 504b23ce1efd9b8fec3fa8a4c2d7a3baf0769dca (patch) | |
tree | 802d0cbfd88bc9cce42ea930acb70638a4ca6c72 | |
parent | fc1fa267a78d689b03502272fb064a3b3713e4c7 (diff) |
Add fixed version for CVE-2019-17626/python-reportlab
-rw-r--r-- | data/CVE/list.2019 | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list.2019 b/data/CVE/list.2019 index 58c6b5a15b..5d74846fa1 100644 --- a/data/CVE/list.2019 +++ b/data/CVE/list.2019 @@ -6833,7 +6833,7 @@ CVE-2019-17628 CVE-2019-17627 (The Yale Bluetooth Key application for mobile devices allows unauthori ...) NOT-FOR-US: Yale Bluetooth Key application for mobile devices CVE-2019-17626 (ReportLab through 3.5.26 allows remote code execution because of toCol ...) - - python-reportlab <unfixed> (bug #942763) + - python-reportlab 3.5.34-1 (bug #942763) NOTE: https://bitbucket.org/rptlab/reportlab/issues/199/eval-in-colorspy-leads-to-remote-code NOTE: https://hg.reportlab.com/hg-public/reportlab/rev/51a521ad7dd3 CVE-2019-17625 (There is a stored XSS in Rambox 0.6.9 that can lead to code execution. ...) |