[Git][security-tracker-team/security-tracker][master] Annotate CVE-2019-11727/nss as ignored
Roberto C. Sánchez
roberto at debian.org
Fri Jul 19 01:57:04 BST 2019
Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fff23bd5 by Roberto C. Sánchez at 2019-07-19T00:56:07Z
Annotate CVE-2019-11727/nss as ignored
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6385,6 +6385,7 @@ CVE-2019-11727
RESERVED
- firefox 68.0-1 (unimportant)
- nss 2:3.45-1
+ [jessie] - nss <ignored> (Issue is specific to TLS 1.3 and support was not really complete in 3.26; code has diverged significantly since and applying the fix would be very disruptive)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11727
NOTE: https://hg.mozilla.org/projects/nss/rev/0a4e8b72a92e144663c2f35d3836f7828cfc97f2
NOTE: firefox-esr in older suites than buster use the embedded copy and thus issue
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fff23bd55d682dfd65ad9ddfdc57d0b163ec3ace
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fff23bd55d682dfd65ad9ddfdc57d0b163ec3ace
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190719/42492372/attachment.html>
More information about the debian-security-tracker-commits
mailing list