[Git][security-tracker-team/security-tracker][master] Add CVE-2020-10753/ceph

László Böszörményi gcs at debian.org
Thu Jun 25 20:41:50 BST 2020



László Böszörményi pushed to branch master at Debian Security Tracker / security-tracker


Commits:
391d1db5 by Laszlo Boszormenyi (GCS) at 2020-06-25T21:41:30+02:00
Add CVE-2020-10753/ceph

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12075,8 +12075,11 @@ CVE-2020-10754 (It was found that nmcli, a command line interface to NetworkMana
 	NOTE: Only affects builds enabling ifcfg-rh settings plugin, source-wise only
 	NOTE: affected but not the Debian binary builds (and is RedHat/Fedora specific
 	NOTE: plugin).
-CVE-2020-10753
+CVE-2020-10753 [rgw: sanitize newlines in s3 CORSConfiguration's ExposeHeader]
 	RESERVED
+	- ceph <unfixed>
+	NOTE: https://github.com/ceph/ceph/pull/35773
+	NOTE: Fix: https://github.com/ceph/ceph/commit/1524d3c0c5cb11775313ea1e2bb36a93257947f2
 CVE-2020-10752 (A flaw was found in the OpenShift API Server, where it failed to suffi ...)
 	NOT-FOR-US: OpenShift
 CVE-2020-10751 (A flaw was found in the Linux kernels SELinux LSM hook implementation  ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/391d1db5aaa686a51b7095257427c99761e22f3e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/391d1db5aaa686a51b7095257427c99761e22f3e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200625/b8807363/attachment.html>


More information about the debian-security-tracker-commits mailing list