[Git][security-tracker-team/security-tracker][master] CVE-2020-35861/rust-bumpalo assigned

Salvatore Bonaccorso carnil at debian.org
Fri Jan 1 09:51:03 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
03c78c5b by Salvatore Bonaccorso at 2021-01-01T10:50:40+01:00
CVE-2020-35861/rust-bumpalo assigned

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -201,8 +201,6 @@ CVE-2020-35863 (An issue was discovered in the hyper crate before 0.12.34 for Ru
 	NOTE: https://github.com/hyperium/hyper/issues/1925
 CVE-2020-35862 (An issue was discovered in the bitvec crate before 0.17.4 for Rust. Bi ...)
 	TODO: check
-CVE-2020-35861 (An issue was discovered in the bumpalo crate before 3.2.1 for Rust. Th ...)
-	TODO: check
 CVE-2020-35860 (An issue was discovered in the cbox crate through 2020-03-19 for Rust. ...)
 	TODO: check
 CVE-2020-35859 (An issue was discovered in the lucet-runtime-internals crate before 0. ...)
@@ -54100,7 +54098,7 @@ CVE-2020-10967 (In Dovecot before 2.3.10.1, remote unauthenticated attackers can
 	[stretch] - dovecot <not-affected> (Vulnerable code introduced in 2.3.0)
 	[jessie] - dovecot <not-affected> (Vulnerable code introduced in 2.3.0)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/05/18/1
-CVE-2020-XXXX [RUSTSEC-2020-0006: bumpalo: Flaw in `realloc` allows reading unknown memory]
+CVE-2020-35861 [RUSTSEC-2020-0006: bumpalo: Flaw in `realloc` allows reading unknown memory]
 	- rust-bumpalo 3.2.1-1 (bug #955151)
 	NOTE: https://rustsec.org/advisories/RUSTSEC-2020-0006.html
 	NOTE: https://github.com/fitzgen/bumpalo/issues/69



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03c78c5bf906d063f176e220d3dc7d321d523a7b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/03c78c5bf906d063f176e220d3dc7d321d523a7b
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210101/27710d2e/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list