Thorsten Alteholz pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3c86b2b5 by Thorsten Alteholz at 2021-07-01T00:05:58+02:00
CVE-2020-8244 fixed in recent upload
- - - - -
2cd90c4f by Thorsten Alteholz at 2021-07-01T00:06:35+02:00
Reserve DLA-2698-1 for node-bl
- - - - -
2 changed files:
- data/CVE/list
- data/DLA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -97765,7 +97765,6 @@ CVE-2020-8245 (Improper Input Validation on Citrix ADC
and Citrix Gateway 13.0 b
CVE-2020-8244 (A buffer over-read vulnerability exists in bl <4.0.3,
<3.0.1, &l ...)
- node-bl 4.0.3-1 (bug #969309)
[buster] - node-bl 1.1.2-1+deb10u1
- [stretch] - node-bl <no-dsa> (Minor issue)
NOTE: https://hackerone.com/reports/966347
NOTE:
https://github.com/rvagg/bl/commit/d3e240e3b8ba4048d3c76ef5fb9dd1f8872d3190
CVE-2020-8243 (A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin
web int ...)
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[01 Jul 2021] DLA-2698-1 node-bl - security update
+ {CVE-2020-8244}
+ [stretch] - node-bl 1.1.2-1+deb9u1
[29 Jun 2021] DLA-2697-1 fluidsynth - security update
{CVE-2021-28421}
[stretch] - fluidsynth 1.1.6-4+deb9u1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0209019f70eb2c09b40cde17f3bf3e5a9863829c...2cd90c4ff252e24ad3000b1f8efafff03d61cd0a
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0209019f70eb2c09b40cde17f3bf3e5a9863829c...2cd90c4ff252e24ad3000b1f8efafff03d61cd0a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
