diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2021-01-27 20:10:22 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2021-01-27 20:10:22 +0000 |
| commit | 555e78bc45263a9494870ee2e8cc6d03dc26cf78 (patch) | |
| tree | 28b4f9497203d263326af74c657565a99fe782f3 /data/CVE/2019.list | |
| parent | eb4d77acdfd77d2c9ceb772aecc7632aa947f87d (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2019.list')
| -rw-r--r-- | data/CVE/2019.list | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/data/CVE/2019.list b/data/CVE/2019.list index 951460d785..6f1143f019 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -3198,6 +3198,7 @@ CVE-2019-19730 CVE-2019-19729 (An issue was discovered in the BSON ObjectID (aka bson-objectid) packa ...) NOT-FOR-US: bsjon-objectid node module CVE-2019-19728 (SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --u ...) + {DSA-4841-1} - slurm-llnl 19.05.5-1 [stretch] - slurm-llnl <no-dsa> (Minor issue) [jessie] - slurm-llnl <ignored> (Minor issue, fix introduces regression, upstream refuses access to bug tracker) @@ -15278,6 +15279,7 @@ CVE-2019-14905 (A vulnerability was found in Ansible Engine versions 2.9.x befor NOTE: https://github.com/ansible/ansible/pull/65423 NOTE: https://github.com/ansible/ansible/blob/stable-2.2/CHANGELOG.md CVE-2019-14904 (A flaw was found in the solaris_zone module from the Ansible Community ...) + {DLA-2535-1} - ansible 2.9.4+dfsg-1 (low) [buster] - ansible <no-dsa> (Minor issue) [jessie] - ansible <not-affected> (Vulnerable module first bundled in 2.0) @@ -15612,7 +15614,7 @@ CVE-2019-14847 (A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4. [jessie] - samba <no-dsa> (Minor issue) NOTE: https://www.samba.org/samba/security/CVE-2019-14847.html CVE-2019-14846 (Ansible, all ansible_engine-2.x versions and ansible_engine-3.x up to ...) - {DLA-2202-1} + {DLA-2535-1 DLA-2202-1} - ansible 2.8.6+dfsg-1 (low; bug #942188) [buster] - ansible <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1755373 @@ -28227,6 +28229,7 @@ CVE-2019-14856 (ansible before versions 2.8.6, 2.7.14, 2.6.20 is vulnerable to a NOTE: https://github.com/ansible/ansible/pull/63351 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1760829 CVE-2019-10206 (ansible-playbook -k and ansible cli tools, all versions 2.8.x before 2 ...) + {DLA-2535-1} - ansible 2.8.6+dfsg-1 (bug #933005) [buster] - ansible <no-dsa> (Minor issue) [jessie] - ansible <not-affected> (Vulnerable code introduced later, password templating code introduced with 2.0 refactoring, '{{' supported in passwords) @@ -28448,7 +28451,7 @@ CVE-2019-10158 (A flaw was found in Infinispan through version 9.4.14.Final. An CVE-2019-10157 (It was found that Keycloak's Node.js adapter before version 4.8.3 did ...) NOT-FOR-US: Keycloak CVE-2019-10156 (A flaw was discovered in the way Ansible templating was implemented in ...) - {DLA-1923-1} + {DLA-2535-1 DLA-1923-1} - ansible 2.8.3+dfsg-1 (low; bug #930065) [buster] - ansible <no-dsa> (Minor issue) NOTE: https://github.com/ansible/ansible/pull/57188 |