[Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-8277 as no-dsa for Stretch

Mon, 16 Nov 2020 18:28:12 -0800 


Roberto C. Sánchez pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
9d2aa0c5 by Roberto C. Sánchez at 2020-11-16T21:18:13-05:00
mark CVE-2020-8277 as no-dsa for Stretch

- - - - -
abeff85a by Roberto C. Sánchez at 2020-11-16T21:25:11-05:00
LTS: add raptor2 to dla-needed.txt

- - - - -
eda8efbe by Roberto C. Sánchez at 2020-11-16T21:26:42-05:00
LTS: add intel-microcode to dla-needed.txt

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -51719,6 +51719,7 @@ CVE-2020-8278
 CVE-2020-8277 [Denial of Service through DNS request]
        RESERVED
        - nodejs <unfixed>
+       [stretch] - nodejs <end-of-life> 
(https://lists.debian.org/debian-lts/2020/02/msg00045.html and 
https://bugs.debian.org/931376)
        NOTE: 
https://nodejs.org/en/blog/vulnerability/november-2020-security-releases/#denial-of-service-through-dns-request-cve-2020-8277
 CVE-2020-8276 (The implementation of Brave Desktop's privacy-preserving 
analytics sys ...)
        NOT-FOR-US: Brave


=====================================
data/dla-needed.txt
=====================================
@@ -64,6 +64,8 @@ golang-github-dgrijalva-jwt-go
 --
 golang-golang-x-net-dev
 --
+intel-microcode
+--
 lemonldap-ng (Utkarsh)
   NOTE: 20200910: Released a DLA for CVE-2020-24660 a few days ago, so could 
defer. (lamby)
 --
@@ -108,6 +110,8 @@ python3.5 (Roberto C. Sánchez)
 --
 qemu (Thorsten Alteholz)
 --
+raptor2
+--
 rclone (Brian May)
   NOTE: Needs rebuild for CVE-2019-11840 in golang-go.crypto.
   NOTE: Problems with upload, see https://bugs.debian.org/974877



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/75616460b1c53245487c4ac2497a534aa7225658...eda8efbe957087f7c9a63a3328a6c352b5d8a761

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/75616460b1c53245487c4ac2497a534aa7225658...eda8efbe957087f7c9a63a3328a6c352b5d8a761
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to