[Git][security-tracker-team/security-tracker][master] buster triage

Moritz Muehlenhoff jmm at debian.org
Thu Oct 22 22:55:34 BST 2020 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86c8e4a7 by Moritz Muehlenhoff at 2020-10-22T23:55:15+02:00
buster triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -648,6 +648,7 @@ CVE-2020-27561
 	RESERVED
 CVE-2020-27560 (ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames i ...)
 	- imagemagick <unfixed>
+	[buster] - imagemagick <ignored> (Minor issue)
 	NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/ef59bd764f88d893f1219fee8ba696a5d3f8c1c4
 	NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/6e3b13c7ef94d72b40fba91987897c4326717a46
 CVE-2020-27559
@@ -2432,6 +2433,7 @@ CVE-2020-26683
 	RESERVED
 CVE-2020-26682 (In libass 0.14.0, the `ass_outline_construct`'s call to `outline_strok ...)
 	- libass <unfixed>
+	[buster] - libass <no-dsa> (Minor issue)
 	[stretch] - libass <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/libass/libass/issues/431
 	NOTE: https://github.com/libass/libass/pull/432
@@ -3519,6 +3521,7 @@ CVE-2020-26165
 	RESERVED
 CVE-2020-26164 (In kdeconnect-kde (aka KDE Connect) before 20.08.2, an attacker on the ...)
 	- kdeconnect <unfixed> (bug #971736)
+	[buster] - kdeconnect <no-dsa> (Minor issue)
 	NOTE: https://kde.org/info/security/advisory-20201002-1.txt
 	NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/f183b5447bad47655c21af87214579f03bf3a163
 	NOTE: https://invent.kde.org/network/kdeconnect-kde/-/commit/b279c52101d3f7cc30a26086d58de0b5f1c547fa



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86c8e4a7fa1de9d3ab12c4903bfb330afcd5e168

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/86c8e4a7fa1de9d3ab12c4903bfb330afcd5e168
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201022/392a8e13/attachment.html>

More information about the debian-security-tracker-commits mailing list