[Git][security-tracker-team/security-tracker][master] new routinator issue

Thu Aug 20 19:47:57 BST 2020


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fed93b53 by Moritz Muehlenhoff at 2020-08-20T20:47:30+02:00
new routinator issue
NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14410,7 +14410,8 @@ CVE-2020-17367 (Firejail through 0.9.62 does not honor the -- end-of-options ind
 	- firejail 0.9.62-4
 	NOTE: https://github.com/netblue30/firejail/commit/2c734d6350ad321fccbefc5ef0382199ac331b37
 CVE-2020-17366 (An issue was discovered in NLnet Labs Routinator 0.1.0 through 0.7.1.  ...)
-	TODO: check
+	- routinator <itp> (bug #929024)
+	NOTE: https://github.com/NLnetLabs/routinator/issues/319
 CVE-2020-17365
 	RESERVED
 CVE-2020-17364 (USVN (aka User-friendly SVN) before 1.0.9 allows XSS via SVN logs. ...)
@@ -38228,7 +38229,7 @@ CVE-2020-8228
 CVE-2020-8227
 	RESERVED
 CVE-2020-8226 (A vulnerability exists in phpBB <v3.2.10 and <v3.3.1 which allow ...)
-	TODO: check
+	NOT-FOR-US: phpBB
 CVE-2020-8225
 	RESERVED
 CVE-2020-8224 (A code injection in Nextcloud Desktop Client 2.6.4 allowed to load arb ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fed93b53eac56b01116c55eb8f5c6805fc98ab0f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fed93b53eac56b01116c55eb8f5c6805fc98ab0f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200820/a13e4d92/attachment.html>
