[Git][security-tracker-team/security-tracker][master] Update two sqlite3 related CVEs marking those as NFU

Sun Dec 27 16:29:53 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
582fdc86 by Salvatore Bonaccorso at 2020-12-27T17:29:20+01:00
Update two sqlite3 related CVEs marking those as NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -56111,10 +56111,8 @@ CVE-2020-9993 (The issue was addressed with improved UI handling. This issue is
 CVE-2020-9992 (This issue was addressed by encrypting communications over the network ...)
 	NOT-FOR-US: Apple
 CVE-2020-9991 (This issue was addressed with improved checks. This issue is fixed in  ...)
-	- sqlite3 <undetermined>
+	NOT-FOR-US: sqlite3 as used by Apple
 	NOTE: No details available due to typical Apple intransparency
-	NOTE: https://support.apple.com/en-us/HT211931
-	NOTE: https://www.rapid7.com/db/vulnerabilities/apple-osx-sqlite-cve-2020-9991/
 CVE-2020-9990 (A race condition was addressed with additional validation. This issue  ...)
 	NOT-FOR-US: Apple
 CVE-2020-9989 (The issue was addressed with improved deletion. This issue is fixed in ...)
@@ -56453,10 +56451,8 @@ CVE-2020-9850 (A logic issue was addressed with improved restrictions. This issu
 	- wpewebkit 2.28.3-1
 	NOTE: https://webkitgtk.org/security/WSA-2020-0006.html
 CVE-2020-9849 (An information disclosure issue was addressed with improved state mana ...)
-	- sqlite3 <undetermined>
+	NOT-FOR-US: sqlite3 as used by Apple
 	NOTE: No details available due to typical Apple intransparency
-	NOTE: https://support.apple.com/en-us/HT211931
-	NOTE: https://www.rapid7.com/db/vulnerabilities/apple-osx-sqlite-cve-2020-9849/
 CVE-2020-9848 (An authorization issue was addressed with improved state management. T ...)
 	NOT-FOR-US: Apple
 CVE-2020-9847 (An out-of-bounds read was addressed with improved bounds checking. Thi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/582fdc868624db2c1aba430ad42e5551f7df303e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/582fdc868624db2c1aba430ad42e5551f7df303e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201227/ea002d8f/attachment.html>
