[Git][security-tracker-team/security-tracker][master] Track fixed version for two fontforge issues

Sat Nov 21 10:49:03 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fe537f23 by Salvatore Bonaccorso at 2020-11-21T11:48:29+01:00
Track fixed version for two fontforge issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -59130,7 +59130,7 @@ CVE-2020-5498
 CVE-2020-5497 (The OpenID Connect reference implementation for MITREid Connect throug ...)
 	NOT-FOR-US: MITREid Connect
 CVE-2020-5496 (FontForge 20190801 has a heap-based buffer overflow in the Type2NotDef ...)
-	- fontforge <unfixed> (bug #948231)
+	- fontforge 1:20201107~dfsg-1 (bug #948231)
 	[buster] - fontforge <no-dsa> (Minor issue)
 	[stretch] - fontforge <no-dsa> (Minor issue)
 	[jessie] - fontforge <no-dsa> (Minor issue)
@@ -59348,7 +59348,7 @@ CVE-2020-5397 (Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to
 CVE-2020-5396 (VMware GemFire versions prior to 9.10.0, 9.9.2, 9.8.7, and 9.7.6, and  ...)
 	NOT-FOR-US: VMware
 CVE-2020-5395 (FontForge 20190801 has a use-after-free in SFD_GetFontMetaData in sfd. ...)
-	- fontforge <unfixed> (bug #948231)
+	- fontforge 1:20201107~dfsg-1 (bug #948231)
 	[buster] - fontforge <no-dsa> (Minor issue)
 	[stretch] - fontforge <no-dsa> (Minor issue)
 	[jessie] - fontforge <no-dsa> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe537f23a4bca8895159cded9f21811ad9bdc177

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fe537f23a4bca8895159cded9f21811ad9bdc177
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201121/0dc9aa4f/attachment.html>
