[Git][security-tracker-team/security-tracker][master] bison unimportant

Fri Jun 26 20:28:56 BST 2020


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aa48b12a by Moritz Muehlenhoff at 2020-06-26T21:28:33+02:00
bison unimportant

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2740,8 +2740,9 @@ CVE-2020-14152 (In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jme
 CVE-2020-14151
 	REJECTED
 CVE-2020-14150 (GNU Bison before 3.5.4 allows attackers to cause a denial of service ( ...)
-	- bison 2:3.6.1+dfsg-1
+	- bison 2:3.6.1+dfsg-1 (unimportant)
 	NOTE: https://lists.gnu.org/archive/html/info-gnu/2020-04/msg00000.html
+	NOTE: Crash in CLI tool, no security impact
 CVE-2020-14149 (In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path provi ...)
 	NOT-FOR-US: uftpd
 CVE-2020-14148 (The Server-Server protocol implementation in ngIRCd before 26~rc2 allo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa48b12a1bace23629a1530bd8cbba56d91e35fe

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa48b12a1bace23629a1530bd8cbba56d91e35fe
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200626/57257651/attachment.html>
