[Git][security-tracker-team/security-tracker][master] Add CVE-2020-11988/xmlgraphics-commons

Wed, 24 Feb 2021 12:41:59 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b4bc72f9 by Salvatore Bonaccorso at 2021-02-24T21:40:47+01:00
Add CVE-2020-11988/xmlgraphics-commons

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -65228,7 +65228,8 @@ CVE-2020-11989 (Apache Shiro before 1.5.3, when using 
Apache Shiro with Spring d
        NOTE: which can (security wise) be exploited, resulting in a 1.5.3 
release. This
        NOTE: CVE is closely related to CVE-2020-1957.
 CVE-2020-11988 (Apache XmlGraphics Commons 2.4 is vulnerable to server-side 
request fo ...)
-       TODO: check
+       - xmlgraphics-commons <unfixed>
+       TODO: check fixing commits
 CVE-2020-11987 (Apache Batik 1.13 is vulnerable to server-side request 
forgery, caused ...)
        - batik <unfixed>
        TODO: check fixing commits



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4bc72f9b5a4fcdd76320467616e882aa2bc324b

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b4bc72f9b5a4fcdd76320467616e882aa2bc324b
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to