[Git][security-tracker-team/security-tracker][master] new pure-ftpd "issue", NFU

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fc50451b by Moritz Muehlenhoff at 2021-01-02T15:45:37+01:00
new pure-ftpd "issue", NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -4356,7 +4356,8 @@ CVE-2020-35361
 CVE-2020-35360
 	RESERVED
 CVE-2020-35359 (Pure-FTPd 1.0.48 allows remote attackers to prevent legitimate server  ...)
-	TODO: check
+	- pure-ftpd <undetermined>
+	NOTE: https://www.exploit-db.com/exploits/49105, seems bogus
 CVE-2020-35358
 	RESERVED
 CVE-2020-35357
@@ -17681,7 +17682,7 @@ CVE-2020-26291 (URI.js is a javascript URL mutation library (npm package urijs).
 CVE-2020-26290 (Dex is a federated OpenID Connect provider written in Go. In Dex befor ...)
 	TODO: check
 CVE-2020-26289 (date-and-time is an npm package for manipulating date and time. In dat ...)
-	TODO: check
+	NOT-FOR-US: Node date-and-time (different from src:node-date-time)
 CVE-2020-26288 (Parse Server is an open source backend that can be deployed to any inf ...)
 	TODO: check
 CVE-2020-26287 (HedgeDoc is a collaborative platform for writing and sharing markdown. ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fc50451bc6bf2606d8ad691ec5310be22e479525

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fc50451bc6bf2606d8ad691ec5310be22e479525
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210102/27d12003/attachment-0001.html>