[Git][security-tracker-team/security-tracker][master] 4 commits: mark CVE-2020-11722 as no-dsa for Jessie
Thorsten Alteholz
alteholz at debian.org
Tue Apr 21 21:22:51 BST 2020
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cb990056 by Thorsten Alteholz at 2020-04-21T22:22:33+02:00
mark CVE-2020-11722 as no-dsa for Jessie
- - - - -
a2cffb11 by Thorsten Alteholz at 2020-04-21T22:22:34+02:00
mark CVE-2020-11879 as no-dsa for Jessie
- - - - -
ad8ba8d6 by Thorsten Alteholz at 2020-04-21T22:22:35+02:00
mark CVE-2020-11880 as no-dsa for Jessie
- - - - -
95df3aa1 by Thorsten Alteholz at 2020-04-21T22:22:36+02:00
mark three CVEs for mysql-connector-java as ignored for Jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -937,11 +937,13 @@ CVE-2020-11880 (An issue was discovered in KDE KMail before 19.12.3. By using th
[buster] - kmail <no-dsa> (Minor issue)
- kdepim <removed>
[stretch] - kdepim <no-dsa> (Minor issue)
+ [jessie] - kdepim <no-dsa> (Minor issue)
NOTE: https://cgit.kde.org/kmail.git/commit/?id=2a348eccd352260f192d9b449492071bbf2b34b1
CVE-2020-11879 (An issue was discovered in GNOME Evolution before 3.35.91. By using th ...)
- evolution 3.36.0-1
[buster] - evolution <no-dsa> (Minor issue)
[stretch] - evolution <no-dsa> (Minor issue)
+ [jessie] - evolution <no-dsa> (Minor issue)
NOTE: https://gitlab.gnome.org/GNOME/evolution/issues/784
NOTE: https://gitlab.gnome.org/GNOME/evolution/-/commit/6489f20d6905cc797e2b2581c415e558c457caa7
CVE-2020-11878 (The Jitsi Meet (aka docker-jitsi-meet) stack on Docker before stable-4 ...)
@@ -1599,6 +1601,7 @@ CVE-2020-11722 (Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows
- crawl <unfixed> (bug #958232)
[buster] - crawl <no-dsa> (Minor issue)
[stretch] - crawl <no-dsa> (Minor issue)
+ [jessie] - crawl <no-dsa> (Minor issue)
NOTE: https://dpmendenhall.blogspot.com/2020/03/dungeon-crawl-stone-soup.html
NOTE: https://github.com/crawl/crawl/commit/768f60da87a3fa0b5561da5ade9309577c176d04
NOTE: https://github.com/crawl/crawl/commit/fc522ff6eb1bbb85e3de60c60a45762571e48c28
@@ -23428,10 +23431,12 @@ CVE-2020-2935 (Vulnerability in the Oracle Financial Services Hedge Management a
CVE-2020-2934 (Vulnerability in the MySQL Connectors product of Oracle MySQL (compone ...)
- mysql-connector-java <removed>
[stretch] - mysql-connector-java <ignored> (Oracle doesn't disclose details, but CVSS score is marginal, so seems fine to ignore for Stretch)
+ [jessie] - mysql-connector-java <ignored> (Oracle doesn't disclose details, but CVSS score is marginal, so seems fine to ignore for Jessie)
NOTE: https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL
CVE-2020-2933 (Vulnerability in the MySQL Connectors product of Oracle MySQL (compone ...)
- mysql-connector-java <removed>
[stretch] - mysql-connector-java <ignored> (Oracle doesn't disclose details, but CVSS score is marginal, so seems fine to ignore for Stretch)
+ [jessie] - mysql-connector-java <ignored> (Oracle doesn't disclose details, but CVSS score is marginal, so seems fine to ignore for Jessie)
NOTE: https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL
CVE-2020-2932 (Vulnerability in the Oracle Knowledge product of Oracle Knowledge (com ...)
NOT-FOR-US: Oracle
@@ -23578,6 +23583,7 @@ CVE-2020-2876 (Vulnerability in the Oracle Marketing product of Oracle E-Busines
CVE-2020-2875 (Vulnerability in the MySQL Connectors product of Oracle MySQL (compone ...)
- mysql-connector-java <removed>
[stretch] - mysql-connector-java <ignored> (Oracle doesn't disclose details, but CVSS score is marginal, so seems fine to ignore for Stretch)
+ [jessie] - mysql-connector-java <ignored> (Oracle doesn't disclose details, but CVSS score is marginal, so seems fine to ignore for Jessie)
NOTE: https://www.oracle.com/security-alerts/cpuapr2020.html#AppendixMSQL
CVE-2020-2874 (Vulnerability in the Oracle Email Center product of Oracle E-Business ...)
NOT-FOR-US: Oracle
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/55d5767bdd52fc69849e41e69514e26c2a0bb94c...95df3aa1a5d972924020b9ec66ccb2a063b466fb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/55d5767bdd52fc69849e41e69514e26c2a0bb94c...95df3aa1a5d972924020b9ec66ccb2a063b466fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200421/e100a9e0/attachment.html>
More information about the debian-security-tracker-commits
mailing list