diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2019-10-27 22:59:41 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2019-10-27 22:59:41 +0100 |
| commit | a4b09774ed9f6220303c3205f6d68bf1e18df1be (patch) | |
| tree | df8f13002118478db585cde66b147110b6cd769c | |
| parent | b5cc3d03aad578bb72be23911222f40b1550519d (diff) | |
Add Debian bug reference for CVE-2019-17543/lz4
| -rw-r--r-- | data/CVE/2019.list | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/2019.list b/data/CVE/2019.list index d2b92eb24d..c6ad3b3230 100644 --- a/data/CVE/2019.list +++ b/data/CVE/2019.list @@ -1943,7 +1943,7 @@ CVE-2019-17544 (libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16109 NOTE: https://github.com/GNUAspell/aspell/commit/80fa26c74279fced8d778351cff19d1d8f44fe4e CVE-2019-17543 (LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4_write32 (rela ...) - - lz4 <unfixed> + - lz4 <unfixed> (bug #943680) [buster] - lz4 <no-dsa> (Minor issue) [stretch] - lz4 <no-dsa> (Minor issue) [jessie] - lz4 <no-dsa> (Very hard to exploit, low risk) |