Add CVE-2019-20421/exiv2

author: Salvatore Bonaccorso <carnil@debian.org> 2020-01-29 22:06:18 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-01-29 22:06:18 +0100
commit: d986eca208513a524648a47322d44873db65150c (patch)
tree: 1c083d0fd1b3b88d7b6a64d192761ba06be63a53
parent: e2e0c105eac3b991e24562d236e391d3ff156cd9 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list.2019 b/data/CVE/list.2019
index b058d41025..0af18df7b4 100644
--- a/data/CVE/list.2019
+++ b/data/CVE/list.2019
@@ -50,7 +50,9 @@ CVE-2019-20422 (In the Linux kernel before 5.3.4, fib6_rule_lookup in net/ipv6/i
 	- linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/7b09c2d052db4b4ad0b27b97918b46a7746966fa
 CVE-2019-20421 (In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input  ...)
-	TODO: check
+	- exiv2 <unfixed>
+	NOTE: https://github.com/Exiv2/exiv2/commit/a82098f4f90cd86297131b5663c3dec6a34470e8
+	NOTE: https://github.com/Exiv2/exiv2/issues/1011
 CVE-2019-20420
 	RESERVED
 CVE-2019-20419
author	Salvatore Bonaccorso <carnil@debian.org>	2020-01-29 22:06:18 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-01-29 22:06:18 +0100
commit	d986eca208513a524648a47322d44873db65150c (patch)
tree	1c083d0fd1b3b88d7b6a64d192761ba06be63a53
parent	e2e0c105eac3b991e24562d236e391d3ff156cd9 (diff)