[Git][security-tracker-team/security-tracker][master] resolve one TODO

Moritz Muehlenhoff jmm at debian.org
Tue Apr 13 11:35:47 BST 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b2ece1a3 by Moritz Muehlenhoff at 2021-04-13T12:35:18+02:00
resolve one TODO

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18673,7 +18673,7 @@ CVE-2021-22499 (Persistent Cross-Site scripting vulnerability in Micro Focus App
 CVE-2021-22498 (XML External Entity Injection vulnerability in Micro Focus Application ...)
 	NOT-FOR-US: Micro Focus
 CVE-2021-22497 (Advanced Authentication versions prior to 6.3 SP4 have a potential bro ...)
-	TODO: check
+	NOT-FOR-US: NetIQ
 CVE-2021-22496 (Authentication Bypass Vulnerability in Micro Focus Access Manager Prod ...)
 	NOT-FOR-US: Micro Focus
 CVE-2021-22495 (An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), ...)
@@ -66196,12 +66196,11 @@ CVE-2020-14410 (SDL (Simple DirectMedia Layer) through 2.0.12 has a heap-based b
 	NOTE: https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9
 CVE-2020-14409 (SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow  ...)
 	{DLA-2536-1}
-	- libsdl1.2 <undetermined>
 	- libsdl2 2.0.14+dfsg2-2
 	[buster] - libsdl2 <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.libsdl.org/show_bug.cgi?id=5200
 	NOTE: https://hg.libsdl.org/SDL/rev/3f9b4e92c1d9
-	TODO: check libsdl1.2
+	NOTE: Specific to SDL2, these checks were addresses in SDL 1.2 with CVE-2019-7637
 CVE-2020-14408 (An issue was discovered in Agentejo Cockpit 0.10.2. Insufficient sanit ...)
 	NOT-FOR-US: Agentejo Cockpit
 CVE-2020-14407



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2ece1a3405225fa192f511c3a914a2ea4f75382

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b2ece1a3405225fa192f511c3a914a2ea4f75382
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210413/13f0079c/attachment.htm>

More information about the debian-security-tracker-commits mailing list