[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-80{20,21,30}/open-build-service

Salvatore Bonaccorso carnil at debian.org
Fri Feb 26 18:18:10 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1d251523 by Salvatore Bonaccorso at 2021-02-26T19:17:36+01:00
Add Debian bug reference for CVE-2020-80{20,21,30}/open-build-service

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -76950,7 +76950,7 @@ CVE-2020-8033 (Ruckus R500 3.4.2.0.384 devices allow XSS via the index.asp Devic
 CVE-2020-8032 (A Insecure Temporary File vulnerability in the packaging of cyrus-sasl ...)
 	- cyrus-sasl2 <not-affected> (openSUSE specific packaging issue)
 CVE-2020-8031 (A Improper Neutralization of Input During Web Page Generation ('Cross- ...)
-	- open-build-service <unfixed>
+	- open-build-service <unfixed> (bug #983576)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1178880
 CVE-2020-8030 (A Insecure Temporary File vulnerability in skuba of SUSE CaaS Platform ...)
 	NOT-FOR-US: SuSE CaaS
@@ -76972,12 +76972,12 @@ CVE-2020-8022 (A Incorrect Default Permissions vulnerability in the packaging of
 	NOT-FOR-US: SAP
 CVE-2020-8021 (a Improper Access Control vulnerability in of Open Build Service allow ...)
 	{DLA-2545-1}
-	- open-build-service <unfixed>
+	- open-build-service <unfixed> (bug #983576)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1171649
 	NOTE: https://github.com/openSUSE/open-build-service/commit/7323c904f86ba9e04065c23422d06c03647589fb
 CVE-2020-8020 (A Improper Neutralization of Input During Web Page Generation vulnerab ...)
 	{DLA-2545-1}
-	- open-build-service <unfixed>
+	- open-build-service <unfixed> (bug #983576)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1171439
 	NOTE: https://github.com/openSUSE/open-build-service/commit/7cc32c8e2ff7290698e101d9a80a9dc29a5500fb
 CVE-2020-8019 (A UNIX Symbolic Link (Symlink) Following vulnerability in the packagin ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d2515233d88069e355de1ca058ab14053ed5287

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d2515233d88069e355de1ca058ab14053ed5287
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210226/e73e4cd7/attachment.htm>

More information about the debian-security-tracker-commits mailing list