[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-25658 as no-dsa for Stretch

Sat Nov 14 15:42:40 GMT 2020


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0b5512ed by Thorsten Alteholz at 2020-11-14T16:41:42+01:00
mark CVE-2020-25658 as no-dsa for Stretch

- - - - -
3db8fa40 by Thorsten Alteholz at 2020-11-14T16:42:15+01:00
release python3.5, could not build package

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -9678,6 +9678,7 @@ CVE-2020-25659 [bleichenbacher timing oracle attack against RSA decryption]
 CVE-2020-25658 (It was found that python-rsa is vulnerable to Bleichenbacher timing at ...)
 	- python-rsa <unfixed> (bug #974685)
 	[buster] - python-rsa <no-dsa> (Minor issue)
+	[stretch] - python-rsa <no-dsa> (Minor issue)
 	NOTE: https://github.com/sybrenstuvel/python-rsa/issues/165
 CVE-2020-25657
 	RESERVED


=====================================
data/dla-needed.txt
=====================================
@@ -91,8 +91,7 @@ php-horde-trean
 pluxml
   NOTE: 20201011: issue is still open upstream. Also low priority for us (abhijith)
 --
-python3.5 (Thorsten Alteholz)
-  NOTE: 20201102: testing package
+python3.5
 --
 qemu (Thorsten Alteholz)
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/17d1cc4c4ace2a85b0b83a00df4c64e2423c3aad...3db8fa408a60e1c6cec3e0c01c5125defb3677d1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/17d1cc4c4ace2a85b0b83a00df4c64e2423c3aad...3db8fa408a60e1c6cec3e0c01c5125defb3677d1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201114/e69fc2aa/attachment.html>
