[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE for reel as end-of-life

Thorsten Alteholz alteholz at debian.org
Sat Feb 13 21:32:23 GMT 2021 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
08e06fd7 by Thorsten Alteholz at 2021-02-13T22:21:14+01:00
mark CVE for reel as end-of-life

- - - - -
553b03a3 by Thorsten Alteholz at 2021-02-13T22:24:44+01:00
mark CVE-2020-36241 as no-dsa for Stretch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1091,6 +1091,7 @@ CVE-2021-26707
 CVE-2020-36241 (autoar-extractor.c in GNOME gnome-autoar through 0.2.4, as used by GNO ...)
 	- gnome-autoar <unfixed> (bug #982737)
 	[buster] - gnome-autoar <no-dsa> (Minor issue)
+	[stretch] - gnome-autoar <no-dsa> (Minor issue)
 	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/commit/adb067e645732fdbe7103516e506d09eb6a54429
 	NOTE: https://gitlab.gnome.org/GNOME/gnome-autoar/-/issues/7
 CVE-2021-26706
@@ -76601,6 +76602,7 @@ CVE-2020-7660 (serialize-javascript prior to 3.1.0 allows remote attackers to in
 	NOT-FOR-US: serialize-javascript Node package
 CVE-2020-7659 (reel through 0.6.1 allows Request Smuggling attacks due to incorrect C ...)
 	- reel <removed>
+	[stretch] - reel <end-of-life> (Not supported in Stretch LTS)
 	NOTE: https://snyk.io/vuln/SNYK-RUBY-REEL-569135
 CVE-2020-7658 (meinheld prior to 1.0.2 is vulnerable to HTTP Request Smuggling. HTTP  ...)
 	NOT-FOR-US: meinheld



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b7c18e8f29923a1cd57aff73f543401d88f0d274...553b03a3ff8d83c8012c9fce1a90da09a0f3b987

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/b7c18e8f29923a1cd57aff73f543401d88f0d274...553b03a3ff8d83c8012c9fce1a90da09a0f3b987
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210213/5ce77aa0/attachment.html>

More information about the debian-security-tracker-commits mailing list