[Git][security-tracker-team/security-tracker][master] 2 commits: Triage CVE-2020-14342 in cifs-utils for stretch LTS.

Chris Lamb lamby at debian.org
Tue Sep 8 10:36:33 BST 2020 


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
96ab7c45 by Chris Lamb at 2020-09-08T10:34:11+01:00
Triage CVE-2020-14342 in cifs-utils for stretch LTS.

- - - - -
71d02e87 by Chris Lamb at 2020-09-08T10:36:21+01:00
data/dla-needed.txt: Triage zeromq3 for stretch LTS (CVE-2020-15166).

- - - - -


2 changed files:

- data/CVE/list
- data/dla-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -23063,6 +23063,7 @@ CVE-2020-14342 [shell command injection in mount.cifs]
 	RESERVED
 	- cifs-utils <unfixed>
 	[buster] - cifs-utils <no-dsa> (Minor issue)
+	[stretch] - cifs-utils <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.samba.org/show_bug.cgi?id=14442
 	NOTE: https://lists.samba.org/archive/samba-technical/2020-September/135747.html
 	NOTE: https://git.samba.org/cifs-utils.git/?p=cifs-utils.git;a=commit;h=48a654e2e763fce24c22e1b9c695b42804bbdd4a


=====================================
data/dla-needed.txt
=====================================
@@ -206,3 +206,5 @@ xcftools
   NOTE: 20200523: Proposed fix https://github.com/j-jorge/xcftools/pull/15 (gladk)
   NOTE: 20200605: Patch https://salsa.debian.org/lts-team/packages/xcftools/-/blob/fix/test-CVE-2019-5087/debian/patches/CVE-2019-5087.patch (gladk)
 --
+zeromq3
+--



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b23fa749854c88c6002346ffb521dac941b7bcc8...71d02e8794533ae0c2ccad0873abaca6c3267b6d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b23fa749854c88c6002346ffb521dac941b7bcc8...71d02e8794533ae0c2ccad0873abaca6c3267b6d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200908/f7a1b2bc/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list