[Git][security-tracker-team/security-tracker][master] Mark CVE-2020-9327/sqlite3 as no-dsa as minor issue
Salvatore Bonaccorso
carnil at debian.org
Sat Feb 22 15:00:34 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d4784097 by Salvatore Bonaccorso at 2020-02-22T15:58:44+01:00
Mark CVE-2020-9327/sqlite3 as no-dsa as minor issue
Whilst the isAuxiliaryVtabOperator function was only introduced between
the stretch and buster version and code refactoring it is not fully
excluded the issue might be source wise as well present in stretch.
Might not affect earlier versions, but play on safe side and mark int
no-dsa instead.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -16,6 +16,8 @@ CVE-2020-9328
RESERVED
CVE-2020-9327 (In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger ...)
- sqlite3 3.31.1-3 (bug #951835)
+ [buster] - sqlite3 <no-dsa> (Minor issue)
+ [stretch] - sqlite3 <no-dsa> (Minor issue)
NOTE: https://www.sqlite.org/cgi/src/info/4374860b29383380
NOTE: https://www.sqlite.org/cgi/src/info/9d0d4ab95dc0c56e
NOTE: https://www.sqlite.org/cgi/src/info/abc473fb8fb99900
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d47840976cce71894064710dec205e2e2adff920
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d47840976cce71894064710dec205e2e2adff920
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200222/fca71829/attachment.html>
More information about the debian-security-tracker-commits
mailing list