Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cce4cd24 by Salvatore Bonaccorso at 2020-02-26T21:55:38+01:00
Add Debian bug tracking information for CVE-2020-5243/uap-core
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9294,7 +9294,7 @@ CVE-2020-5245 (Dropwizard-Validation before 1.3.19, and
2.0.2 may allow arbitrar
CVE-2020-5244 (In BuddyPress before 5.1.2, requests to a certain REST API
endpoint ca ...)
NOT-FOR-US: BuddyPress
CVE-2020-5243 (uap-core before 0.7.3 is vulnerable to a denial of service
attack when ...)
- - uap-core <unfixed>
+ - uap-core <unfixed> (bug #952649)
NOTE:
https://github.com/ua-parser/uap-core/security/advisories/GHSA-cmcx-xhr8-3w9p
NOTE:
https://github.com/ua-parser/uap-core/commit/a679b131697e7371f0441f4799940779efa2f27e
NOTE:
https://github.com/ua-parser/uap-core/commit/dd279cff09546dbd4174bd05d29c0e90c2cffa7c
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cce4cd245ccaed14e02fb49f0ed228c8ad3bba4f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cce4cd245ccaed14e02fb49f0ed228c8ad3bba4f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
