[Git][security-tracker-team/security-tracker][master] 2 commits: Mark CVE-2020-28935/nsd as no-dsa for stretch
Utkarsh Gupta
utkarsh at debian.org
Wed Dec 30 16:59:12 GMT 2020
Utkarsh Gupta pushed to branch master at Debian Security Tracker / security-tracker
Commits:
96d87388 by Utkarsh Gupta at 2020-12-30T22:27:36+05:30
Mark CVE-2020-28935/nsd as no-dsa for stretch
- - - - -
0360c78e by Utkarsh Gupta at 2020-12-30T22:28:55+05:30
Mark CVE-2020-3550{3-6}/qemu as postponed for stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3485,21 +3485,25 @@ CVE-2020-35506 [use after free vulnerability in esp_do_dma() in hw/scsi/esp.c]
RESERVED
- qemu <unfixed>
[buster] - qemu <postponed> (Fix along in future DSA)
+ [stretch] - qemu <postponed> (Fix along in future DLA)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1909996
CVE-2020-35505 [NULL pointer dereference in do_busid_cmd() in hw/scsi/esp.c]
RESERVED
- qemu <unfixed>
[buster] - qemu <postponed> (Fix along in future DSA)
+ [stretch] - qemu <postponed> (Fix along in future DLA)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1909769
CVE-2020-35504 [NULL pointer dereference in scsi_req_continue() in hw/scsi/scsi-bus.c]
RESERVED
- qemu <unfixed>
[buster] - qemu <postponed> (Fix along in future DSA)
+ [stretch] - qemu <postponed> (Fix along in future DLA)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1909766
CVE-2020-35503 [QEMU: NULL pointer dereference issue in megasas-gen2 host bus adapter]
RESERVED
- qemu <unfixed>
[buster] - qemu <postponed> (Fix along in future DSA)
+ [stretch] - qemu <postponed> (Fix along in future DLA)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1910346
CVE-2020-35502
RESERVED
@@ -7959,6 +7963,7 @@ CVE-2020-28936
CVE-2020-28935 (NLnet Labs Unbound, up to and including version 1.12.0, and NLnet Labs ...)
- nsd 4.3.4-1
[buster] - nsd <no-dsa> (Minor issue)
+ [stretch] - nsd <no-dsa> (Minor issue)
- unbound 1.13.0-1 (bug #977165)
[buster] - unbound <no-dsa> (Minor issue)
[stretch] - unbound <end-of-life> (DSA 4694-1)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c8f8a8d5bb523080edc88fc8476b6c8efcb00310...0360c78e91929263fdfa36640854d4cfb91fa3c1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c8f8a8d5bb523080edc88fc8476b6c8efcb00310...0360c78e91929263fdfa36640854d4cfb91fa3c1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201230/dfdab213/attachment.html>
More information about the debian-security-tracker-commits
mailing list