Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits: 92f1460d by Moritz Muehlenhoff at 2020-03-31T11:35:45+02:00 new bubblewrap issue - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,8 @@ +CVE-2020-XXXX [bubblewrap priv escalation] + - bubblewrap 0.4.1-1 (low) + [buster] - bubblewrap <not-affected> (Introduced in 0.4.0) + [stretch] - bubblewrap <not-affected> (Introduced in 0.4.0) + NOTE: https://github.com/containers/bubblewrap/security/advisories/GHSA-j2qp-rvxj-43vj CVE-2020-11113 (FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...) - jackson-databind <unfixed> NOTE: https://github.com/FasterXML/jackson-databind/issues/2670 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92f1460d0a7f113b4b670ee0040caccc5233c10f -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92f1460d0a7f113b4b670ee0040caccc5233c10f You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
