[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2020-27216 as no-dsa for Stretch
Thorsten Alteholz
alteholz at debian.org
Sat Oct 24 16:22:55 BST 2020
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0d421caf by Thorsten Alteholz at 2020-10-24T17:19:14+02:00
mark CVE-2020-27216 as no-dsa for Stretch
- - - - -
48011c4a by Thorsten Alteholz at 2020-10-24T17:20:47+02:00
mark CVE-2020-15256 as postponed for Stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1381,6 +1381,7 @@ CVE-2020-27217
RESERVED
CVE-2020-27216 (In Eclipse Jetty versions 1.0 thru 9.4.32.v20200930, 10.0.0.alpha1 thr ...)
- jetty9 9.4.33-1
+ [stretch] - jetty9 <no-dsa> (Minor issue)
- jetty8 <removed>
- jetty <removed>
NOTE: https://bugs.eclipse.org/bugs/show_bug.cgi?id=567921
@@ -26617,6 +26618,7 @@ CVE-2020-15257
CVE-2020-15256 (A prototype pollution vulnerability has been found in `object-path` &l ...)
- node-object-path 0.11.5-3
[buster] - node-object-path <no-dsa> (Minor issue; will be fixed via point release)
+ [stretch] - node-object-path <postponed> (Minor issue)
NOTE: https://github.com/mariocasciaro/object-path/security/advisories/GHSA-cwx2-736x-mf6w
CVE-2020-15255 (In Anuko Time Tracker before verion 1.19.23.5325, due to not properly ...)
NOT-FOR-US: Anuko Time Tracker
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c6e4f134cec99888f110a1b45ef789ba51514fda...48011c4a108167b19d591aa9ec4904afcb8244e9
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/c6e4f134cec99888f110a1b45ef789ba51514fda...48011c4a108167b19d591aa9ec4904afcb8244e9
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201024/3c426cfb/attachment.html>
More information about the debian-security-tracker-commits
mailing list