[Git][security-tracker-team/security-tracker][master] update status for ntpsec wrt latest ntp issue (no-dsa)
Moritz Muehlenhoff
jmm at debian.org
Thu Jun 25 11:33:28 BST 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
eb73f926 by Moritz Muehlenhoff at 2020-06-25T12:33:00+02:00
update status for ntpsec wrt latest ntp issue (no-dsa)
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -41,9 +41,11 @@ CVE-2020-15027
CVE-2020-15026 (Bludit 3.12.0 allows admins to use a /plugin-backup-download?file=../ ...)
NOT-FOR-US: Bludit
CVE-2020-15025 (ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remo ...)
- - ntp <unfixed>
+ - ntp <unfixed> (low)
+ [buster] - ntp <no-dsa> (Minor issue)
[stretch] - ntp <not-affected> (Vulnerable code introduced later)
[jessie] - ntp <not-affected> (Vulnerable code introduced later)
+ - ntpsec <not-affected> (Vulnerable code not present)
NOTE: https://support.ntp.org/bin/view/Main/NtpBug3661
NOTE: https://support.ntp.org/bin/view/Main/SecurityNotice#June_2020_ntp_4_2_8p15_NTP_Relea
NOTE: https://bugs.ntp.org/show_bug.cgi?id=3661
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb73f926b89668df560cdc64098261c1c98cacac
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/eb73f926b89668df560cdc64098261c1c98cacac
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200625/2f983c39/attachment.html>
More information about the debian-security-tracker-commits
mailing list