[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Move bug reference to source

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5166660b by Salvatore Bonaccorso at 2018-03-10T16:13:48+01:00
Move bug reference to source

- - - - -
a6f7d154 by Salvatore Bonaccorso at 2018-03-10T16:15:10+01:00
Mark CVE-2018-1000089 as no-dsa

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2140,9 +2140,9 @@ CVE-2018-1000090
 	RESERVED
 CVE-2018-1000089 [WEBHOOK_AUTHORIZATION secret disclosure when debug enabled]
 	RESERVED
-	- django-anymail 1.4-1
+	- django-anymail 1.4-1 (bug #890097)
+	[stretch] - django-anymail <no-dsa> (Minor issue; non-free/contrib not security supported)
 	NOTE: https://github.com/anymail/django-anymail/commit/1a6086f2b58478d71f89bf27eb034ed81aefe5ef
-	NOTE: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=890097
 CVE-2018-1000088 [Stored XSS vulnerability]
 	RESERVED
 	- ruby-doorkeeper <unfixed> (bug #891069)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4642d5d0d05f1c528691715aed47f85f717c01c5...a6f7d15480de561f0458245c8248e98a22df2b2a

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4642d5d0d05f1c528691715aed47f85f717c01c5...a6f7d15480de561f0458245c8248e98a22df2b2a
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180310/566fc5bc/attachment.html>