[Git][security-tracker-team/security-tracker][master] Track proposed update for fastd via buster-pu

Salvatore Bonaccorso carnil at debian.org
Thu Oct 22 08:44:01 BST 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
af6e519f by Salvatore Bonaccorso at 2020-10-22T09:43:26+02:00
Track proposed update for fastd via buster-pu

- - - - -


2 changed files:

- data/CVE/list
- data/next-point-update.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,5 +1,6 @@
 CVE-2020-XXXX [DoS'able memory leak on invalid packets]
 	- fastd 21-1 (bug #972521)
+	[buster] - fastd <no-dsa> (Will be fixed via point release)
 	NOTE: https://github.com/NeoRaider/fastd/commit/737925113363b6130879729cdff9ccc46c33eaea
 CVE-2020-27613 (The installation procedure in BigBlueButton before 2.2.17 uses ClueCon ...)
 	NOT-FOR-US: BigBlueButton


=====================================
data/next-point-update.txt
=====================================
@@ -76,3 +76,6 @@ CVE-2020-11077
 	[buster] - puma 3.12.0-2+deb10u2
 CVE-2020-16124
 	[buster] - ros-ros-comm 1.14.3+ds1-5+deb10u2
+CVE-2020-XXXX [DoS'able memory leak on invalid packets]
+	[buster] - fastd 18-3+deb10u1
+	NOTE: For #972521



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af6e519fed6b05bca0a11abb77761fc0155b84d3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/af6e519fed6b05bca0a11abb77761fc0155b84d3
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201022/06f88bd3/attachment.html>


More information about the debian-security-tracker-commits mailing list