[Git][security-tracker-team/security-tracker][master] Mark CVE-2020-9327/sqlite3 as no-dsa as minor issue

Salvatore Bonaccorso carnil at debian.org
Sat Feb 22 15:00:34 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d4784097 by Salvatore Bonaccorso at 2020-02-22T15:58:44+01:00
Mark CVE-2020-9327/sqlite3 as no-dsa as minor issue

Whilst the isAuxiliaryVtabOperator function was only introduced between
the stretch and buster version and code refactoring it is not fully
excluded the issue might be source wise as well present in stretch.
Might not affect earlier versions, but play on safe side and mark int
no-dsa instead.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -16,6 +16,8 @@ CVE-2020-9328
 	RESERVED
 CVE-2020-9327 (In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger  ...)
 	- sqlite3 3.31.1-3 (bug #951835)
+	[buster] - sqlite3 <no-dsa> (Minor issue)
+	[stretch] - sqlite3 <no-dsa> (Minor issue)
 	NOTE: https://www.sqlite.org/cgi/src/info/4374860b29383380
 	NOTE: https://www.sqlite.org/cgi/src/info/9d0d4ab95dc0c56e
 	NOTE: https://www.sqlite.org/cgi/src/info/abc473fb8fb99900



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d47840976cce71894064710dec205e2e2adff920

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d47840976cce71894064710dec205e2e2adff920
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200222/fca71829/attachment.html>


More information about the debian-security-tracker-commits mailing list