Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0d421caf by Thorsten Alteholz at 2020-10-24T17:19:14+02:00
mark CVE-2020-27216 as no-dsa for Stretch
- - - - -
48011c4a by Thorsten Alteholz at 2020-10-24T17:20:47+02:00
mark CVE-2020-15256 as postponed for Stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1381,6 +1381,7 @@ CVE-2020-27217
RESERVED
CVE-2020-27216 (In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930,
10.0.0.alpha1 thr ...)
- jetty9 9.4.33-1
+ [stretch] - jetty9 <no-dsa> (Minor issue)
- jetty8 <removed>
- jetty <removed>
NOTE: https://bugs.eclipse.org/bugs/show_bug.cgi?id=567921
@@ -26617,6 +26618,7 @@ CVE-2020-15257
CVE-2020-15256 (A prototype pollution vulnerability has been found in
`object-path` &l ...)
- node-object-path 0.11.5-3
[buster] - node-object-path <no-dsa> (Minor issue; will be fixed via
point release)
+ [stretch] - node-object-path <postponed> (Minor issue)
NOTE:
https://github.com/mariocasciaro/object-path/security/advisories/GHSA-cwx2-736x-mf6w
CVE-2020-15255 (In Anuko Time Tracker before verion 1.19.23.5325, due to not
properly ...)
NOT-FOR-US: Anuko Time Tracker
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c6e4f134cec99888f110a1b45ef789ba51514fda...48011c4a108167b19d591aa9ec4904afcb8244e9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c6e4f134cec99888f110a1b45ef789ba51514fda...48011c4a108167b19d591aa9ec4904afcb8244e9
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
