[Git][security-tracker-team/security-tracker][master] Triage in CVE-2020-14019 in python-rtslib-fb for stretch LTS.
Chris Lamb
lamby at debian.org
Wed Jul 8 15:35:23 BST 2020
Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9cfa71e2 by Chris Lamb at 2020-07-08T15:34:45+01:00
Triage in CVE-2020-14019 in python-rtslib-fb for stretch LTS.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3946,6 +3946,7 @@ CVE-2020-14020
RESERVED
CVE-2020-14019 (Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/targ ...)
- python-rtslib-fb <unfixed>
+ [stretch] - python-rtslib-fb <not-affected> (vulnerable code introduced later, shutil.copyfile is not used)
[jessie] - python-rtslib-fb <not-affected> (vulnerable code introduced later, shutil.copyfile is not used)
NOTE: https://github.com/open-iscsi/rtslib-fb/pull/162
CVE-2020-14018 (An issue was discovered in Navigate CMS 2.9 r1433. There is a stored X ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9cfa71e2ced90492ee5e8e0b2412f374d0b15307
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9cfa71e2ced90492ee5e8e0b2412f374d0b15307
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200708/5c2de3a8/attachment.html>
More information about the debian-security-tracker-commits
mailing list