[Git][security-tracker-team/security-tracker][master] 3 commits: mark CVE-2020-12872 as no-dsa for Jessie

Thorsten Alteholz alteholz at debian.org
Tue May 19 10:08:47 BST 2020



Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
43af13c4 by Thorsten Alteholz at 2020-05-19T11:08:30+02:00
mark CVE-2020-12872 as no-dsa for Jessie

- - - - -
17fd6534 by Thorsten Alteholz at 2020-05-19T11:08:30+02:00
add transmission

- - - - -
def979ae by Thorsten Alteholz at 2020-05-19T11:08:31+02:00
mark CVE-2019-20797 for prboom-plus as EOL

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -81,6 +81,7 @@ CVE-2019-20798 (An XSS issue was discovered in handler_server_info.c in Cherokee
 	- cherokee <removed>
 CVE-2019-20797 (An issue was discovered in e6y prboom-plus 2.5.1.5. There is a buffer  ...)
 	- prboom-plus <unfixed>
+	[jessie] - prboom-plus <end-of-life> (games are not supported)
 	NOTE: https://logicaltrust.net/blog/2019/10/prboom1.html
 	NOTE: https://sourceforge.net/p/prboom-plus/bugs/252/
 	NOTE: https://sourceforge.net/p/prboom-plus/bugs/253/
@@ -599,6 +600,7 @@ CVE-2020-12872 (yaws_config.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolet
 	- yaws <unfixed> (low)
 	[buster] - yaws <no-dsa> (Minor issue)
 	[stretch] - yaws <no-dsa> (Minor issue)
+	[jessie] - yaws <no-dsa> (Minor issue)
 	NOTE: https://medium.com/@charlielabs101/cve-2020-12872-df315411aa70
 CVE-2020-12871
 	RESERVED


=====================================
data/dla-needed.txt
=====================================
@@ -105,6 +105,8 @@ squid3 (Markus Koschany)
 tomcat8
   In d8fb8968ba9d89b4fd62e6570ad78b2efa8b7635 the DLA was reserved but not uploaded.
 --
+transmission (Thorsten Alteholz)
+--
 tzdata
   NOTE: 20200514: LTS update must wait on oldstable update first to prevent newer version in LTS (roberto)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/16a1d8bd00723cb3bd16582ad563e556fff4bdbe...def979ae091ed8499a9b1be3f9d6a2bf517b13ca

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/16a1d8bd00723cb3bd16582ad563e556fff4bdbe...def979ae091ed8499a9b1be3f9d6a2bf517b13ca
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200519/f9d025bc/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list