[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-14342/cifs-utils

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
54459ca0 by Salvatore Bonaccorso at 2020-09-12T15:33:37+02:00
Add Debian bug reference for CVE-2020-14342/cifs-utils

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -23286,7 +23286,7 @@ CVE-2020-14343 [.load() and FullLoader still vulnerable 
to fairly trivial RCE]
        NOTE: https://github.com/yaml/pyyaml/issues/420
        NOTE: CVE is for an incomplete fix of CVE-2020-1747.
 CVE-2020-14342 (It was found that cifs-utils' mount.cifs was invoking a shell 
when req ...)
-       - cifs-utils <unfixed>
+       - cifs-utils <unfixed> (bug #970172)
        [buster] - cifs-utils <no-dsa> (Minor issue)
        [stretch] - cifs-utils <no-dsa> (Minor issue)
        NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14442



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54459ca0a0aed11f827386f4c81301571b35deb9

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/54459ca0a0aed11f827386f4c81301571b35deb9
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits