[Git][security-tracker-team/security-tracker][master] 2 commits: data/CVE/list: Add PR with fix to CVE-2020-1737/ansible

Mike Gabriel sunweaver at debian.org
Thu Apr 16 21:02:01 BST 2020 


Mike Gabriel pushed to branch master at Debian Security Tracker / security-tracker


Commits:
901fa0e1 by Mike Gabriel at 2020-04-16T22:01:30+02:00
data/CVE/list: Add PR with fix to CVE-2020-1737/ansible

- - - - -
dfa7f6f7 by Mike Gabriel at 2020-04-16T22:01:43+02:00
data/CVE/list: Add PR with fix to CVE-2020-1735/ansible

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25943,6 +25943,7 @@ CVE-2020-1737 (A flaw was found in Ansible 2.7.17 and prior, 2.8.9 and prior, an
 	- ansible <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802154
 	NOTE: https://github.com/ansible/ansible/issues/67795
+	NOTE: https://github.com/ansible/ansible/pull/67799
 CVE-2020-1736 (A flaw was found in Ansible Engine when a file is moved using atomic_m ...)
 	- ansible <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802124
@@ -25951,6 +25952,7 @@ CVE-2020-1735 (A flaw was found in the Ansible Engine when the fetch module is u
 	- ansible <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1802085
 	NOTE: https://github.com/ansible/ansible/issues/67793
+	NOTE: https://github.com/ansible/ansible/pull/68720
 CVE-2020-1734 (A flaw was found in the pipe lookup plugin of ansible. Arbitrary comma ...)
 	- ansible <unfixed> (unimportant)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1801804



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2e3e402ab51662d17d811694208ee1aa5b0688bc...dfa7f6f7bd34df761ee83ea63cc86c0c63b3340f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/2e3e402ab51662d17d811694208ee1aa5b0688bc...dfa7f6f7bd34df761ee83ea63cc86c0c63b3340f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200416/06700585/attachment.html>

More information about the debian-security-tracker-commits mailing list