Skip to content
GitLab
Explore
Sign in
Register
Commits on Source (2)
Triage CVE-2019-11578 in dhcpcd5 for jessie LTS; vulnerable authentication code introduced later.
· 4f0556e3
Chris Lamb
authored
May 02, 2019
4f0556e3
Triage CVE-2019-11579 in dhcpcd5 for jessie LTS; vulnerable code added later.
· b0c730aa
Chris Lamb
authored
May 02, 2019
b0c730aa
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
b0c730aa
...
...
@@ -248,10 +248,12 @@ CVE-2019-11577 (dhcpcd before 7.2.1 contains a buffer overflow in dhcp6_findna i
CVE-2019-11579 (dhcp.c in dhcpcd before 7.2.1 contains a 1-byte read overflow with DHO ...)
- dhcpcd5 <unfixed> (low; bug #928104)
[stretch] - dhcpcd5 <no-dsa> (Minor issue)
[jessie] - dhcpcd5 <not-affected> (Vulnerable code added later)
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=4b67f6f1038fd4ad5ca7734eaaeba1b2ec4816b8
CVE-2019-11578 (auth.c in dhcpcd before 7.2.1 allowed attackers to infer secrets by pe ...)
- dhcpcd5 <unfixed> (low; bug #928056)
[stretch] - dhcpcd5 <no-dsa> (Minor issue)
[jessie] - dhcpcd5 <not-affected> (Vulnerable authentication code introduced later)
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=7121040790b611ca3fbc400a1bbcd4364ef57233
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=cfde89ab66cb4e5957b1c4b68ad6a9449e2784da
NOTE: https://roy.marples.name/git/dhcpcd.git/commit/?id=aee631aadeef4283c8a749c1caf77823304acf5e
Chris Lamb authored
Chris Lamb authored