Archive > 20.1 Legacy Series
CVE-2019-18634, CVE-2020-7450
(1/1)
mcc85s:
Reporting (2) CVE's after upgrading to [20.1]
***GOT REQUEST TO AUDIT SECURITY***
Fetching vuln.xml.bz2: .......... done
sudo-1.8.30 is vulnerable:
sudo -- Potential bypass of Runas user restrictions
CVE: CVE-2019-18634
WWW: https://vuxml.FreeBSD.org/freebsd/b4e5f782-442d-11ea-9ba9-206a8a720317.html
pkg-1.12.0 is vulnerable:
pkg -- vulnerability in libfetch
CVE: CVE-2020-7450
WWW: https://vuxml.FreeBSD.org/freebsd/2af10639-4299-11ea-aab1-98fa9bfec35a.html
2 problem(s) in 2 installed package(s) found.
***DONE***
chemlud:
...this info is for your personal use, not for posting here ;-)
mcc85s:
Ok, what about for the developers?
mimugmail:
They are also aware of this :)
chemlud:
--- Quote from: mcc85s on February 02, 2020, 06:30:13 pm ---Ok, what about for the developers?
--- End quote ---
...they also know how to press a button in their software... :-)
Navigation
[0] Message Index
Go to full version