Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d6a3cae2 by Salvatore Bonaccorso at 2021-08-21T21:10:54+02:00
Remove notes from CVE-2020-24741
The CVE was a duplicate of CVE-2020-0570.
Updated in the CVE feed and will be updates for us in the next automatic
run.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -66183,22 +66183,8 @@ CVE-2020-24742 (An issue has been fixed in Qt versions
5.14.0 where QPluginLoade
NOTE: Introduced in
https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=3146dadb42cb36aff83a62e831b8b4f4dc1562a7
(v5.6.0-alpha1)
NOTE: Fixed by:
https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=bf131e8d2181b3404f5293546ed390999f760404
(v5.14.0-rc1)
NOTE: Same fix as CVE-2020-0569
-CVE-2020-24741 (An issue has been fixed in Qt versions 5.14.1 and 5.12.7 where
QLibrar ...)
- - qtbase-opensource-src 5.14.2+dfsg-3
- [buster] - qtbase-opensource-src <not-affected> (Vulnerable code
introduced later)
- [stretch] - qtbase-opensource-src <not-affected> (Vulnerable code
introduced later)
- - qtbase-opensource-src-gles 5.14.2+dfsg-3
- - qt4-x11 <removed>
- [buster] - qt4-x11 <not-affected> (Vulnerable code introduced later)
- [stretch] - qt4-x11 <not-affected> (Vulnerable code introduced later)
- NOTE: https://bugreports.qt.io/browse/QTBUG-81272
- NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/286795 (5.14.1)
- NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/287102 (5.12.7)
- NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/299105 (dev)
- NOTE: Vulnerable code introduced at
https://codereview.qt-project.org/c/qt/qtbase/+/286795
- NOTE:
https://codereview.qt-project.org/c/qt/qtbase/+/286795/2/src/corelib/plugin/qlibrary_unix.cpp
- NOTE: Introduced by:
https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=object;h=5219c37f7c98f37f078fee00fe8ca35d83ff4f5d
- NOTE: Fixed by:
https://codereview.qt-project.org/gitweb?p=qt/qtbase.git;a=commitdiff;h=e6f1fde24f77f63fb16b2df239f82a89d2bf05dd
+CVE-2020-24741
+ REJECTED
CVE-2020-24740 (An issue was discovered in Pluck 4.7.10-dev2. There is a CSRF
vulnerab ...)
NOT-FOR-US: Pluck CMS
CVE-2020-24739 (A CSRF vulnerability was found in iCMS v7.0.0 in the
background deleti ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6a3cae2dc28a2e7c61c7d3433f5492ee88e9ac6
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d6a3cae2dc28a2e7c61c7d3433f5492ee88e9ac6
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
