[Git][security-tracker-team/security-tracker][master] Add CVE-2020-25648/nss
Salvatore Bonaccorso
carnil at debian.org
Tue Oct 20 06:24:12 BST 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aa844e5f by Salvatore Bonaccorso at 2020-10-20T07:23:57+02:00
Add CVE-2020-25648/nss
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3588,8 +3588,12 @@ CVE-2020-25649
- jackson-databind 2.11.1-1
NOTE: https://github.com/FasterXML/jackson-databind/issues/2589
NOTE: https://github.com/FasterXML/jackson-databind/commit/612f971b78c60202e9cd75a299050c8f2d724a59 (jackson-databind-2.11.0.rc1)
-CVE-2020-25648
+CVE-2020-25648 [Tighten CCS handling for middlebox compatibility mode]
RESERVED
+ - nss <unfixed>
+ NOTE: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.58_release_notes
+ NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1641480 (private)
+ NOTE: Fixed by: https://hg.mozilla.org/projects/nss/rev/57bbefa793232586d27cee83e74411171e128361
CVE-2020-25647
RESERVED
CVE-2020-25646
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa844e5f946810af24b84650303f9d8795f08454
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/aa844e5f946810af24b84650303f9d8795f08454
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201020/c5a84bb1/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list