[Git][security-tracker-team/security-tracker][master] Mark three open-iscsi issues as no-dsa
Salvatore Bonaccorso
carnil at debian.org
Thu Dec 24 21:52:30 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a94a02e9 by Salvatore Bonaccorso at 2020-12-24T22:52:12+01:00
Mark three open-iscsi issues as no-dsa
The issues are minor in general and only cherry-picking those commits
needed is likely not a net security improvement.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -35374,6 +35374,7 @@ CVE-2020-17438 (An issue was discovered in uIP 1.0, as used in Contiki 3.0 and o
NOT-FOR-US: uIP as used in Contiki and other products (but apparently not open-iscsi)
CVE-2020-17437 (An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other p ...)
- open-iscsi 2.1.3-1
+ [buster] - open-iscsi <no-dsa> (Minor issue)
NOTE: https://groups.google.com/g/open-iscsi/c/iRS9fcB1bJU/m/BbxY1SGPEwAJ
NOTE: Adressed upstream in 2.1.3 release
CVE-2020-17436
@@ -44134,10 +44135,12 @@ CVE-2020-13989
RESERVED
CVE-2020-13988 (An issue was discovered in Contiki through 3.0. An Integer Overflow ex ...)
- open-iscsi 2.1.3-1
+ [buster] - open-iscsi <no-dsa> (Minor issue)
NOTE: https://groups.google.com/g/open-iscsi/c/iRS9fcB1bJU/m/BbxY1SGPEwAJ
NOTE: Adressed upstream in 2.1.3 release
CVE-2020-13987 (An issue was discovered in Contiki through 3.0. An Out-of-Bounds Read ...)
- open-iscsi 2.1.3-1
+ [buster] - open-iscsi <no-dsa> (Minor issue)
NOTE: https://github.com/open-iscsi/open-iscsi/security/advisories/GHSA-r278-fm99-8rgp
NOTE: https://groups.google.com/g/open-iscsi/c/iRS9fcB1bJU/m/BbxY1SGPEwAJ
NOTE: Adressed upstream in 2.1.3 release
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a94a02e9f8e4bee7fcb4828656a3512b67197b65
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a94a02e9f8e4bee7fcb4828656a3512b67197b65
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201224/3d1c2449/attachment.html>
More information about the debian-security-tracker-commits
mailing list