[Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-5225 as no-dsa for Jessie

Sat Jan 25 11:06:02 GMT 2020


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
52b33d34 by Thorsten Alteholz at 2020-01-25T11:51:45+01:00
mark CVE-2020-5225 as no-dsa for Jessie

- - - - -
ce05a6dd by Thorsten Alteholz at 2020-01-25T11:56:23+01:00
add slirp

- - - - -
665e303e by Thorsten Alteholz at 2020-01-25T12:05:37+01:00
mark CVE-2019-20386 as no-dsa for Jessie

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1580,6 +1580,7 @@ CVE-2020-7239 (The conversation-watson plugin before 0.8.21 for WordPress has a
 	NOT-FOR-US: conversation-watson plugin for WordPress
 CVE-2019-20386 (An issue was discovered in button_open in login/logind-button.c in sys ...)
 	- systemd 243-5
+	[jessie] - systemd <no-dsa> (Minor issue)
 	NOTE: https://github.com/systemd/systemd/commit/b2774a3ae692113e1f47a336a6c09bac9cfb49ad
 CVE-2019-20385 (The CSV upload feature in /supervisor/procesa_carga.php on Logaritmo A ...)
 	NOT-FOR-US: Logaritmo Aware CallManager 2012 devices
@@ -5877,6 +5878,7 @@ CVE-2020-5226 (Cross-site scripting in SimpleSAMLphp before version 1.18.4. The
 	NOTE: https://simplesamlphp.org/security/202001-01
 CVE-2020-5225 (Log injection in SimpleSAMLphp before version 1.18.4. The www/errorepo ...)
 	- simplesamlphp 1.18.4-1
+	[jessie] - simplesamlphp <no-dsa> (Minor issue)
 	NOTE: https://github.com/simplesamlphp/simplesamlphp/security/advisories/GHSA-6gc6-m364-85ww
 	NOTE: https://simplesamlphp.org/security/202001-02
 CVE-2020-5224 (In Django User Sessions (django-user-sessions) before 1.7.1, the views ...)


=====================================
data/dla-needed.txt
=====================================
@@ -111,6 +111,8 @@ salt
 --
 samba (Roberto C. Sánchez)
 --
+slirp (Thorsten Alteholz)
+--
 slurm-llnl
   NOTE: 20191125: up for testing https://people.debian.org/~abhijith/upload/slurm-llnl_14.03.9-5+deb8u5.dsc
   NOTE: Regression found. (abhijith)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/0661666896f007b4528fde72adedd2e884ac74ee...665e303e015fc5f354027e4b79fda68c568a30b2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/0661666896f007b4528fde72adedd2e884ac74ee...665e303e015fc5f354027e4b79fda68c568a30b2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200125/791cb917/attachment.html>
