Carlos Henrique Lima Melara pushed to branch master at Debian Security Tracker
/ security-tracker
Commits:
bff04c72 by Carlos Henrique Lima Melara at 2026-05-25T08:00:28+02:00
CVE-2020-36309/nginx: follow secteam triage for stretch and mark ignored
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -489157,7 +489157,7 @@ CVE-2020-36309 (ngx_http_lua_module (aka
lua-nginx-module) before 0.10.16 in Ope
- libnginx-mod-http-lua <not-affected> (Fixed before initial upload to
Debian)
- nginx 1.22.0-3 (bug #986787)
[buster] - nginx <ignored> (Minor issue, too intrusive to backport, see
#986787)
- [stretch] - nginx <postponed> (Minor issue; can be fixed in next update)
+ [stretch] - nginx <ignored> (Minor issue, too intrusive to backport,
see #986787)
NOTE: https://news.ycombinator.com/item?id=26709159
NOTE: https://robertchen.cc/blog/2021/04/03/github-pages-xss
NOTE: https://github.com/openresty/lua-nginx-module/pull/1654
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bff04c72840830009100cd5d2da27be5649ac3c9
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/bff04c72840830009100cd5d2da27be5649ac3c9
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
