[Git][security-tracker-team/security-tracker][master] LTS: triage CVE-2019-20807/vim for jessie as no-dsa, minor issue
Roberto C. Sánchez
roberto at debian.org
Sat May 30 00:22:22 BST 2020
Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d593ad53 by Roberto C. Sánchez at 2020-05-29T19:21:51-04:00
LTS: triage CVE-2019-20807/vim for jessie as no-dsa, minor issue
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -120,6 +120,7 @@ CVE-2019-20807 (In Vim before 8.1.0881, users can circumvent the rvim restricted
- vim 2:8.1.2136-1
[buster] - vim <no-dsa> (Minor issue)
[stretch] - vim <no-dsa> (Minor issue)
+ [jessie] - vim <no-dsa> (Minor issue)
NOTE: https://github.com/vim/vim/commit/8c62a08faf89663e5633dc5036cd8695c80f1075
CVE-2020-13644 (An issue was discovered in the Accordion plugin before 2.2.9 for WordP ...)
NOT-FOR-US: Accordion plugin for WordPress
=====================================
data/dla-needed.txt
=====================================
@@ -120,8 +120,6 @@ tzdata
--
unbound (Anton Gladky)
--
-vim (Roberto C. Sánchez)
---
xcftools (Anton Gladky)
NOTE: 20200111: wrote a patch + reproducer for CVE-2019-5086, waiting for upstream review (hle)
NOTE: 20200414: Flurry of activity on/around 20200401 essentially rejecting original patch
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d593ad536c435690fb6767e6cb762db456a06dc0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d593ad536c435690fb6767e6cb762db456a06dc0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200529/7d3c20b9/attachment.html>
More information about the debian-security-tracker-commits
mailing list