[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2020-769{4,5}/python-uvicorn as no-dsa

Salvatore Bonaccorso carnil at debian.org
Sun Aug 30 16:49:01 BST 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8ce8eed1 by Salvatore Bonaccorso at 2020-08-30T17:45:46+02:00
Mark CVE-2020-769{4,5}/python-uvicorn as no-dsa

- - - - -
e0185cba by Salvatore Bonaccorso at 2020-08-30T17:46:52+02:00
Remove stretch entry for teeworlds as it was removed with #935596 from the archive

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -28436,7 +28436,6 @@ CVE-2020-12067
 	RESERVED
 CVE-2020-12066 (CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before ...)
 	- teeworlds 0.7.5-1
-	[stretch] - teeworlds <end-of-life> (Not supported in Stretch LTS)
 	[jessie] - teeworlds <end-of-life> (Not supported in jessie LTS)
 	NOTE: https://github.com/teeworlds/teeworlds/commit/c68402fa7e279d42886d5951d1ea8ac2facc1ea5
 	NOTE: https://www.teeworlds.com/forum/viewtopic.php?id=14785
@@ -40868,10 +40867,12 @@ CVE-2020-7696 (This affects all versions of package react-native-fast-image. Whe
 	NOT-FOR-US: react-native-fast-image nodejs module
 CVE-2020-7695 (Uvicorn before 0.11.7 is vulnerable to HTTP response splitting. CRLF s ...)
 	- python-uvicorn <unfixed> (bug #969275)
+	[buster] - python-uvicorn <no-dsa> (Minor issue)
 	NOTE: https://snyk.io/vuln/SNYK-PYTHON-UVICORN-570471
 	NOTE: https://github.com/encode/uvicorn/issues/719
 CVE-2020-7694 (This affects all versions of package uvicorn. The request logger provi ...)
 	- python-uvicorn <unfixed> (bug #969276)
+	[buster] - python-uvicorn <no-dsa> (Minor issue)
 	NOTE: https://snyk.io/vuln/SNYK-PYTHON-UVICORN-575560
 	NOTE: https://github.com/encode/uvicorn/issues/723
 CVE-2020-7693 (Incorrect handling of Upgrade header with the value websocket leads in ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/db4fb94a94d3a52d4b6000a8bf5a580e6cadc97f...e0185cba1be75940794702a9e31ca84847ca3aa0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/db4fb94a94d3a52d4b6000a8bf5a580e6cadc97f...e0185cba1be75940794702a9e31ca84847ca3aa0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200830/b236f5d0/attachment.html>

More information about the debian-security-tracker-commits mailing list