Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fe537f23 by Salvatore Bonaccorso at 2020-11-21T11:48:29+01:00
Track fixed version for two fontforge issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -59130,7 +59130,7 @@ CVE-2020-5498
CVE-2020-5497 (The OpenID Connect reference implementation for MITREid Connect
throug ...)
NOT-FOR-US: MITREid Connect
CVE-2020-5496 (FontForge 20190801 has a heap-based buffer overflow in the
Type2NotDef ...)
- - fontforge <unfixed> (bug #948231)
+ - fontforge 1:20201107~dfsg-1 (bug #948231)
[buster] - fontforge <no-dsa> (Minor issue)
[stretch] - fontforge <no-dsa> (Minor issue)
[jessie] - fontforge <no-dsa> (Minor issue)
@@ -59348,7 +59348,7 @@ CVE-2020-5397 (Spring Framework, versions 5.2.x prior
to 5.2.3 are vulnerable to
CVE-2020-5396 (VMware GemFire versions prior to 9.10.0, 9.9.2, 9.8.7, and
9.7.6, and ...)
NOT-FOR-US: VMware
CVE-2020-5395 (FontForge 20190801 has a use-after-free in SFD_GetFontMetaData
in sfd. ...)
- - fontforge <unfixed> (bug #948231)
+ - fontforge 1:20201107~dfsg-1 (bug #948231)
[buster] - fontforge <no-dsa> (Minor issue)
[stretch] - fontforge <no-dsa> (Minor issue)
[jessie] - fontforge <no-dsa> (Minor issue)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe537f23a4bca8895159cded9f21811ad9bdc177
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe537f23a4bca8895159cded9f21811ad9bdc177
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
