Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits: 43af13c4 by Thorsten Alteholz at 2020-05-19T11:08:30+02:00 mark CVE-2020-12872 as no-dsa for Jessie - - - - - 17fd6534 by Thorsten Alteholz at 2020-05-19T11:08:30+02:00 add transmission - - - - - def979ae by Thorsten Alteholz at 2020-05-19T11:08:31+02:00 mark CVE-2019-20797 for prboom-plus as EOL - - - - - 2 changed files: - data/CVE/list - data/dla-needed.txt Changes: ===================================== data/CVE/list ===================================== @@ -81,6 +81,7 @@ CVE-2019-20798 (An XSS issue was discovered in handler_server_info.c in Cherokee - cherokee <removed> CVE-2019-20797 (An issue was discovered in e6y prboom-plus 2.5.1.5. There is a buffer ...) - prboom-plus <unfixed> + [jessie] - prboom-plus <end-of-life> (games are not supported) NOTE: https://logicaltrust.net/blog/2019/10/prboom1.html NOTE: https://sourceforge.net/p/prboom-plus/bugs/252/ NOTE: https://sourceforge.net/p/prboom-plus/bugs/253/ @@ -599,6 +600,7 @@ CVE-2020-12872 (yaws_config.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolet - yaws <unfixed> (low) [buster] - yaws <no-dsa> (Minor issue) [stretch] - yaws <no-dsa> (Minor issue) + [jessie] - yaws <no-dsa> (Minor issue) NOTE: https://medium.com/@charlielabs101/cve-2020-12872-df315411aa70 CVE-2020-12871 RESERVED ===================================== data/dla-needed.txt ===================================== @@ -105,6 +105,8 @@ squid3 (Markus Koschany) tomcat8 In d8fb8968ba9d89b4fd62e6570ad78b2efa8b7635 the DLA was reserved but not uploaded. -- +transmission (Thorsten Alteholz) +-- tzdata NOTE: 20200514: LTS update must wait on oldstable update first to prevent newer version in LTS (roberto) -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/16a1d8bd00723cb3bd16582ad563e556fff4bdbe...def979ae091ed8499a9b1be3f9d6a2bf517b13ca -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/16a1d8bd00723cb3bd16582ad563e556fff4bdbe...def979ae091ed8499a9b1be3f9d6a2bf517b13ca You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits