[Git][security-tracker-team/security-tracker][master] new chromium issue

Wed Mar 4 11:55:37 GMT 2020


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35701fa0 by Moritz Muehlenhoff at 2020-03-04T12:54:56+01:00
new chromium issue
mark qt as ignored

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1191,9 +1191,9 @@ CVE-2020-9447 (The file-upload feature in GwtUpload 1.0.3 allows XSS via a craft
 CVE-2020-9446
 	RESERVED
 CVE-2018-21035 (In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB f ...)
-	- qtwebsockets-opensource-src <unfixed> (bug #953049)
-	[buster] - qtwebsockets-opensource-src <no-dsa> (Minor issue)
-	[stretch] - qtwebsockets-opensource-src <no-dsa> (Minor issue)
+	- qtwebsockets-opensource-src <unfixed> (low; bug #953049)
+	[buster] - qtwebsockets-opensource-src <ignored> (Minor issue)
+	[stretch] - qtwebsockets-opensource-src <ignored> (Minor issue)
 	[jessie] - qtwebsockets-opensource-src <no-dsa> (Minor issue)
 	NOTE: https://bugreports.qt.io/browse/QTBUG-70693
 	NOTE: https://codereview.qt-project.org/c/qt/qtwebsockets/+/284735
@@ -8086,6 +8086,8 @@ CVE-2020-6421
 	RESERVED
 CVE-2020-6420
 	RESERVED
+	- chromium <unfixed>
+	[stretch] - chromium <end-of-life> (see DSA 4562)
 CVE-2020-6419
 	RESERVED
 CVE-2020-6418 (Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35701fa0a223e484e70378bb70204ab0d18ff914

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/35701fa0a223e484e70378bb70204ab0d18ff914
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200304/a9958160/attachment.html>
