Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4be89666 by Salvatore Bonaccorso at 2020-06-01T10:55:33+02:00
Mark CVE-2020-10754 as unimportant
The issue is present source-wise but it effectively only affects builds
with the ifcfg-rh settings plugin enabled. This is (and cannot be) for
Debian builds.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8446,9 +8446,12 @@ CVE-2020-10755
RESERVED
CVE-2020-10754 [user configuration not honoured leaving the connection
unauthenticated via insecure defaults]
RESERVED
- - network-manager <unfixed>
+ - network-manager <unfixed> (unimportant)
NOTE:
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/issues/448
NOTE:
https://gitlab.freedesktop.org/NetworkManager/NetworkManager/-/commit/8affcc19b61fc3c516474ba075e61b82030feeb4
+ NOTE: Only affects builds enabling ifcfg-rh settings plugin,
source-wise only
+ NOTE: affected but not the Debian binary builds (and is RedHat/Fedora
specific
+ NOTE: plugin).
CVE-2020-10753
RESERVED
CVE-2020-10752
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4be896667b2205e3e5b3f97ed3d6928cbbce3a24
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/4be896667b2205e3e5b3f97ed3d6928cbbce3a24
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
