[Git][security-tracker-team/security-tracker][master] one pillow issue unimportant

Moritz Muehlenhoff jmm at debian.org
Thu Jul 16 15:58:29 BST 2020



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1f9bd202 by Moritz Muehlenhoff at 2020-07-16T16:58:08+02:00
one pillow issue unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11695,11 +11695,10 @@ CVE-2020-11540
 CVE-2020-11539 (An issue was discovered on Tata Sonata Smart SF Rush 1.12 devices. It  ...)
 	NOT-FOR-US: Tata Sonata Smart SF Rush 1.12 devices
 CVE-2020-11538 (In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out- ...)
-	- pillow 7.2.0-1
-	[jessie] - pillow <no-dsa> (Minor issue)
+	- pillow 7.2.0-1 (unimportant)
 	NOTE: https://github.com/python-pillow/Pillow/pull/4504
 	NOTE: https://github.com/python-pillow/Pillow/pull/4538
-	NOTE: Fixed in 7.1.0
+	NOTE: Debian packages are built without JPEG2000 support
 CVE-2020-11537 (A SQL Injection issue was discovered in ONLYOFFICE Document Server 5.5 ...)
 	NOT-FOR-US: ONLYOFFICE Document Server
 CVE-2020-11536 (An issue was discovered in ONLYOFFICE Document Server 5.5.0. An attack ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f9bd202945364c59677fed71effa1d47b4ec72e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1f9bd202945364c59677fed71effa1d47b4ec72e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200716/25b5b33f/attachment.html>


More information about the debian-security-tracker-commits mailing list