Candidate: CVE-2019-9084
PublicDate: 2019-06-07 21:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9084
Description:
 In Hoteldruid before 2.3.1, a division by zero was discovered in
 $num_tabelle in tab_tariffe.php (aka the numtariffa1 parameter) due to the
 mishandling of non-numeric values, as demonstrated by the
 /tab_tariffe.php?anno=[YEAR]&numtariffa1=1a URI. It could allow an
 administrator to conduct remote denial of service (disrupting certain
 business functions of the product).
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H [4.9 MEDIUM]


Patches_hoteldruid:
upstream_hoteldruid: released (2.3.2-1)
precise/esm_hoteldruid: DNE
trusty_hoteldruid: ignored (reached end-of-life)
trusty/esm_hoteldruid: DNE (trusty was needs-triage)
xenial_hoteldruid: ignored (end of standard support, was needed)
bionic_hoteldruid: needed
cosmic_hoteldruid: ignored (reached end-of-life)
disco_hoteldruid: ignored (reached end-of-life)
eoan_hoteldruid: released (2.3.2-1)
focal_hoteldruid: released (2.3.2-1)
groovy_hoteldruid: released (2.3.2-1)
hirsute_hoteldruid: released (2.3.2-1)
impish_hoteldruid: released (2.3.2-1)
jammy_hoteldruid: released (2.3.2-1)
devel_hoteldruid: released (2.3.2-1)