[Git][security-tracker-team/security-tracker][master] two non issues

Moritz Muehlenhoff jmm at debian.org
Fri Feb 26 16:31:54 GMT 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
81bbf74c by Moritz Mühlenhoff at 2021-02-26T17:31:38+01:00
two non issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -14754,9 +14754,7 @@ CVE-2021-21435 (Article Bcc fields and agent personal information are shown when
 CVE-2021-21434 (Survey administrator can craft a survey in such way that malicious cod ...)
 	NOT-FOR-US: OTRS Survey addon
 CVE-2020-35850 (** DISPUTED ** An SSRF issue was discovered in cockpit-project.org Coc ...)
-	- cockpit <unfixed>
-	[bullseye] - cockpit <ignored> (Minor issue)
-	[buster] - cockpit <ignored> (Minor issue)
+	NOTE: Bug disputed by upstream
 	NOTE: https://github.com/cockpit-project/cockpit/issues/15077
 CVE-2020-35849 (An issue was discovered in MantisBT before 2.24.4. An incorrect access ...)
 	- mantis <removed>
@@ -19242,10 +19240,7 @@ CVE-2020-35361
 CVE-2020-35360
 	RESERVED
 CVE-2020-35359 (Pure-FTPd 1.0.48 allows remote attackers to prevent legitimate server  ...)
-	- pure-ftpd <undetermined>
-	NOTE: https://www.exploit-db.com/exploits/49105 , seems bogus
-	NOTE: Issue mitigated by MaxClientsPerIP in pure-ftpd.conf configuration file
-CVE-2020-35358
+	NOTE: Bogus issue, can be configured using MaxClientsPerIP in pure-ftpd.conf configuration file
 	RESERVED
 CVE-2020-35357
 	RESERVED



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81bbf74c50b1e17287a69aa2de57e1143d80e897

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/81bbf74c50b1e17287a69aa2de57e1143d80e897
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210226/0d7e7a99/attachment.htm>

More information about the debian-security-tracker-commits mailing list