[Git][security-tracker-team/security-tracker][master] Try to clarify the disputed status of CVE-2020-36325
Salvatore Bonaccorso
carnil at debian.org
Wed Apr 28 20:14:13 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
22a8f6df by Salvatore Bonaccorso at 2021-04-28T21:13:18+02:00
Try to clarify the disputed status of CVE-2020-36325
Did not got REJECTED but marked DISPUTED with an additonal note as "the
vendor reports that this only occurs when a programmer fails to follow
the API specification. ".
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -193,7 +193,7 @@ CVE-2021-31805
CVE-2020-36325 (** DISPUTED ** An issue was discovered in Jansson through 2.13.1. Due ...)
- jansson <unfixed> (unimportant)
NOTE: https://github.com/akheron/jansson/issues/548
- NOTE: Disputed security impact between reporter and upstream
+ NOTE: Disputed security impact (only if programmer fails to follow API specifications)
CVE-2021-31826 (Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointe ...)
{DSA-4905-1}
- shibboleth-sp <unfixed> (bug #987608)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22a8f6dff92d0c369d3f8a7268ec535201a7c3b1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22a8f6dff92d0c369d3f8a7268ec535201a7c3b1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210428/f15a2add/attachment.htm>
More information about the debian-security-tracker-commits
mailing list