[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-25658 as no-dsa for Stretch
Thorsten Alteholz
alteholz at debian.org
Sat Nov 14 15:42:40 GMT 2020
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0b5512ed by Thorsten Alteholz at 2020-11-14T16:41:42+01:00
mark CVE-2020-25658 as no-dsa for Stretch
- - - - -
3db8fa40 by Thorsten Alteholz at 2020-11-14T16:42:15+01:00
release python3.5, could not build package
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -9678,6 +9678,7 @@ CVE-2020-25659 [bleichenbacher timing oracle attack against RSA decryption]
CVE-2020-25658 (It was found that python-rsa is vulnerable to Bleichenbacher timing at ...)
- python-rsa <unfixed> (bug #974685)
[buster] - python-rsa <no-dsa> (Minor issue)
+ [stretch] - python-rsa <no-dsa> (Minor issue)
NOTE: https://github.com/sybrenstuvel/python-rsa/issues/165
CVE-2020-25657
RESERVED
=====================================
data/dla-needed.txt
=====================================
@@ -91,8 +91,7 @@ php-horde-trean
pluxml
NOTE: 20201011: issue is still open upstream. Also low priority for us (abhijith)
--
-python3.5 (Thorsten Alteholz)
- NOTE: 20201102: testing package
+python3.5
--
qemu (Thorsten Alteholz)
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/17d1cc4c4ace2a85b0b83a00df4c64e2423c3aad...3db8fa408a60e1c6cec3e0c01c5125defb3677d1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/17d1cc4c4ace2a85b0b83a00df4c64e2423c3aad...3db8fa408a60e1c6cec3e0c01c5125defb3677d1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201114/e69fc2aa/attachment.html>
More information about the debian-security-tracker-commits
mailing list