Log

ASA-201911-6 edited at 04 Nov 2019 18:15:32
Impact
- an attacker is able to access and write on files via arbitrary paths or crash the application.
+ An attacker is able to access and write on files via arbitrary paths or crash the application.
ASA-201911-4 edited at 04 Nov 2019 18:08:43
Impact
- A remote attacker is able to craft a malicious URL and transfer private data to a different host as expected.
+ A remote attacker is able to craft a malicious URL and transfer private data to a different host than expected.
ASA-201911-3 edited at 04 Nov 2019 18:07:39
Impact
- An attacker is able to craft malicious regular expressions to execute arbitrary code
+ An attacker is able to use malicious regular expressions to get access to sensitive information.
CVE-2019-9169 edited at 04 Nov 2019 18:07:06
Type
- Arbitrary code execution
+ Information disclosure
ASA-201911-3 edited at 04 Nov 2019 18:07:06
ASA-201911-7 edited at 04 Nov 2019 16:46:14
Impact
+ A remote attacker can execute arbitrary code on the affected host.
ASA-201911-7 created at 04 Nov 2019 16:46:05
AVG-1061 created at 04 Nov 2019 16:44:17
Packages
+ electron
Issues
+ CVE-2019-13720
Status
+ Fixed
Severity
+ Critical
Affected
+ 7.0.0-1
Fixed
+ 7.0.1-1
Ticket
Advisory qualified
+ Yes
References
+ https://github.com/electron/electron/commit/25b3ee29cf9a8e3f59dcbabf7345b5b1360cd056
Notes
ASA-201911-5 edited at 04 Nov 2019 16:04:06
Impact
- An attacker is able to escape the sandbox provided by ghostscript
+ An attacker is able to escape the sandbox provided by ghostscript.
ASA-201911-6 edited at 03 Nov 2019 14:56:20
Impact
- an attacker is able to access and write on files via arbitrary paths, crash the application or execute arbitrary code.
+ an attacker is able to access and write on files via arbitrary paths or crash the application.
ASA-201911-6 edited at 03 Nov 2019 14:56:04
Impact
+ an attacker is able to access and write on files via arbitrary paths, crash the application or execute arbitrary code.