[Git][security-tracker-team/security-tracker][master] Mark CVE-2020-11538/pillow as not-affected for stretch
Utkarsh Gupta
utkarsh at debian.org
Sat Aug 8 16:55:12 BST 2020
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5f9f2f0f by Utkarsh Gupta at 2020-08-08T21:24:46+05:30
Mark CVE-2020-11538/pillow as not-affected for stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -15378,6 +15378,7 @@ CVE-2020-11539 (An issue was discovered on Tata Sonata Smart SF Rush 1.12 device
CVE-2020-11538 (In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out- ...)
- pillow 7.2.0-1 (low)
[buster] - pillow 5.4.1-2+deb10u2
+ [stretch] - pillow <not-affected> (Vulnerable code not present)
NOTE: https://github.com/python-pillow/Pillow/pull/4504
NOTE: https://github.com/python-pillow/Pillow/pull/4538
CVE-2020-11537 (A SQL Injection issue was discovered in ONLYOFFICE Document Server 5.5 ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f9f2f0fdfc032793142de14b0f1d11c36144477
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f9f2f0fdfc032793142de14b0f1d11c36144477
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200808/bb62a347/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list