[Git][security-tracker-team/security-tracker][master] 2 commits: Remove TODO item for source package not anymore present in supported suites

Sat Aug 15 13:18:10 BST 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a20ed108 by Salvatore Bonaccorso at 2020-08-15T14:17:55+02:00
Remove TODO item for source package not anymore present in supported suites

- - - - -
362d4ca2 by Salvatore Bonaccorso at 2020-08-15T14:17:56+02:00
Add CVE-2020-17507/qt

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -13714,7 +13714,11 @@ CVE-2020-17509
 CVE-2020-17508
 	RESERVED
 CVE-2020-17507 (An issue was discovered in Qt through 5.12.9, and 5.13.x through 5.15. ...)
-	TODO: check
+	- qtbase-opensource-src <unfixed>
+	- qt4-x11 <removed>
+	NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/308436 (dev branch)
+	NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/308496 (5.15 branch)
+	NOTE: https://codereview.qt-project.org/c/qt/qtbase/+/308495 (5.12 branch)
 CVE-2020-17506 (Artica Web Proxy 4.30.00000000 allows remote attacker to bypass privil ...)
 	NOT-FOR-US: Artica Web Proxy
 CVE-2020-17505 (Artica Web Proxy 4.30.000000 allows an authenticated remote attacker t ...)
@@ -44480,7 +44484,6 @@ CVE-2020-5530 (Cross-site request forgery (CSRF) vulnerability in Easy Property
 CVE-2020-5529 (HtmlUnit prior to 2.37.0 contains code execution vulnerabilities. Html ...)
 	- htmlunit <removed>
 	NOTE: https://github.com/HtmlUnit/htmlunit/commit/934390fefcd2cd58e6d86f2bc19d811ae17bfa28
-	TODO: check details, might affect jenkins-htmlunit
 CVE-2020-5528 (Cross-site scripting vulnerability in Movable Type series (Movable Typ ...)
 	- movabletype-opensource <removed>
 CVE-2020-5527 (When MELSOFT transmission port (UDP/IP) of Mitsubishi Electric MELSEC  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4dad73f9c528f4df41282a54f1f89537f3e8b0ee...362d4ca29f28fadba0f491ba1c84d4b862fb964a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/4dad73f9c528f4df41282a54f1f89537f3e8b0ee...362d4ca29f28fadba0f491ba1c84d4b862fb964a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200815/2fd54e1f/attachment.html>
