[Git][security-tracker-team/security-tracker][master] Mark CVE-2019-14553/edk2 as unimportant
Salvatore Bonaccorso
carnil at debian.org
Wed Nov 13 20:28:03 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
753075eb by Salvatore Bonaccorso at 2019-11-13T20:27:13Z
Mark CVE-2019-14553/edk2 as unimportant
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15007,12 +15007,11 @@ CVE-2019-14554
RESERVED
CVE-2019-14553 [invalid server certificate accepted in HTTPS-over-IPv6 boot]
RESERVED
- - edk2 0~20190828.37eef910-4 (bug #941775)
- [buster] - edk2 <no-dsa> (Minor issue)
- [stretch] - edk2 <no-dsa> (Minor issue)
- [jessie] - edk2 <end-of-life> (jessie version is non-free, non-free is not supported)
+ - edk2 0~20190828.37eef910-4 (unimportant; bug #941775)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1758518
NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=960
+ NOTE: unimportant, as Debian builds do not enable HTTPSBOOT (via
+ NOTE: -DNETWORK_TLS_ENABLE=TRUE).
CVE-2019-14552
RESERVED
CVE-2017-18509 (An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/753075ebc099dcc28952c39afe1d25630f261a84
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/753075ebc099dcc28952c39afe1d25630f261a84
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191113/b50ab343/attachment.html>
More information about the debian-security-tracker-commits
mailing list