[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-7471/python-django

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aa5747c4 by Salvatore Bonaccorso at 2020-02-03T21:04:12+01:00
Add Debian bug reference for CVE-2020-7471/python-django

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2323,7 +2323,7 @@ CVE-2019-20387 (repodata_schema2id in repodata.c in libsolv before 0.7.6 has a h
 	NOTE: https://github.com/openSUSE/libsolv/commit/fdb9c9c03508990e4583046b590c30d958f272da (0.7.6)
 CVE-2020-7471 [Potential SQL injection via StringAgg(delimiter)]
 	RESERVED
-	- python-django <unfixed>
+	- python-django <unfixed> (bug #950581)
 	NOTE: https://www.djangoproject.com/weblog/2020/feb/03/security-releases/
 	NOTE: https://github.com/django/django/commit/eb31d845323618d688ad429479c6dda973056136 (master)
 	NOTE: https://github.com/django/django/commit/505826b469b16ab36693360da9e11fd13213421b (3.0.3)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aa5747c4ffe7b74011adcde81c40191b8ce536e0

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aa5747c4ffe7b74011adcde81c40191b8ce536e0
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200203/cc5e9eca/attachment.html>