Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
61ab9bc3 by Salvatore Bonaccorso at 2020-04-07T21:02:46+02:00
Update information on CVE-2020-1759/ceph
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24559,6 +24559,9 @@ CVE-2020-1760 [header-splitting in RGW GetObject has a
possible XSS]
CVE-2020-1759 [ceph: secure mode of msgr2 breaks both confidentiality and
integrity aspects for long-lived sessions]
RESERVED
- ceph <unfixed>
+ [buster] - ceph <not-affected> (Vulnerable code not present)
+ [stretch] - ceph <not-affected> (Vulnerable code not present)
+ [jessie] - ceph <not-affected> (Vulnerable code not present)
NOTE: Introduced with:
https://github.com/ceph/ceph-ci/commit/fe387e02b11df98357d8cdbfa3b1f1d5f2bb3f74
NOTE: Fixed by:
https://github.com/ceph/ceph-ci/commit/84d2e215969cde830b086d11544aeb3666614211
NOTE: Fixed by:
https://github.com/ceph/ceph-ci/commit/659ec7dc6e30fe961832f813da007f49e603a33d
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/61ab9bc387e0a970e511b1d7f31f4e90f2572999
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/61ab9bc387e0a970e511b1d7f31f4e90f2572999
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
