[Git][security-tracker-team/security-tracker][master] 2 commits: Add note for CVE-2020-24972 (kleopatra) regarding when the vulnerability was introduced.

Tue Sep 22 12:28:31 BST 2020


Chris Lamb pushed to branch master at Debian Security Tracker / security-tracker


Commits:
39cbd647 by Chris Lamb at 2020-09-22T12:28:10+01:00
Add note for CVE-2020-24972 (kleopatra) regarding when the vulnerability was introduced.

- - - - -
4965ea94 by Chris Lamb at 2020-09-22T12:28:12+01:00
Triage CVE-2020-24973 in kleopatra for stretch LTS.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1802,8 +1802,10 @@ CVE-2020-24973
 CVE-2020-24972 (The Kleopatra component before 3.1.12 (and before 20.07.80) for GnuPG  ...)
 	- kleopatra <unfixed>
 	[buster] - kleopatra <no-dsa> (Minor issue)
+	[stretch] - kleopatra <not-affected> (Vulnerable code added to Debian in version 4:18.07.90-1)
 	NOTE: https://dev.gnupg.org/rKLEOPATRAb4bd63c1739900d94c04da03045e9445a5a5f54b
 	NOTE: https://security.gentoo.org/glsa/202008-21
+	NOTE: Added in https://dev.gnupg.org/rKLEOPATRAd1cd40bae47eb349e14750601223b6b5d9f71940 (v18.07.80+)
 CVE-2020-24971
 	RESERVED
 CVE-2020-24970



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a5ecbf1d299ab861d2395fee6e2be59857b22f41...4965ea94b92660c552e3d9349719ca0342c0281b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a5ecbf1d299ab861d2395fee6e2be59857b22f41...4965ea94b92660c552e3d9349719ca0342c0281b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200922/4b39a7e7/attachment.html>
