[Git][security-tracker-team/security-tracker][master] bullseye triage

Sun, 06 Jun 2021 12:10:48 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a6688c52 by Moritz Muehlenhoff at 2021-06-06T21:10:15+02:00
bullseye triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -30509,6 +30509,7 @@ CVE-2021-21405 (Lotus is an Implementation of the 
Filecoin protocol written in G
        NOT-FOR-US: Lotus
 CVE-2021-21404 (Syncthing is a continuous file synchronization program. In 
Syncthing b ...)
        - syncthing <unfixed> (bug #986593)
+       [bullseye] - syncthing <no-dsa> (Minor issue)
        [buster] - syncthing <no-dsa> (Minor issue)
        [stretch] - syncthing <postponed> (Minor issue; can be fixed in next 
update)
        NOTE: 
https://github.com/syncthing/syncthing/security/advisories/GHSA-x462-89pf-6r5h
@@ -41176,6 +41177,7 @@ CVE-2020-28484
        RESERVED
 CVE-2020-28483 (This affects all versions of package github.com/gin-gonic/gin. 
When gi ...)
        - golang-github-gin-gonic-gin <unfixed> (bug #988943)
+       [bullseye] - golang-github-gin-gonic-gin <no-dsa> (Minor issue)
        [buster] - golang-github-gin-gonic-gin <no-dsa> (Minor issue)
        NOTE: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGINGONICGIN-1041736
        NOTE: https://github.com/gin-gonic/gin/pull/2474
@@ -136850,6 +136852,8 @@ CVE-2019-11940 (In the course of decompressing HPACK 
inside the HTTP2 protocol,
        NOT-FOR-US: Facebook Proxygen
 CVE-2019-11939 (Golang Facebook Thrift servers would not error upon receiving 
messages ...)
        - thrift <unfixed> (bug #988948)
+       [bullseye] - thrift <no-dsa> (Minor issue)
+       [buster] - thrift <no-dsa> (Minor issue)
        NOTE: 
https://github.com/facebook/fbthrift/commit/483ed864d69f307e9e3b9dadec048216100c0757
 CVE-2019-11938 (Java Facebook Thrift servers would not error upon receiving 
messages d ...)
        NOT-FOR-US: Java Facebook Thrift



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6688c52e0d4f5e0c305b4d243afcba97808b03d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6688c52e0d4f5e0c305b4d243afcba97808b03d
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to