[Git][security-tracker-team/security-tracker][master] bullseye triage
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Jun 6 20:10:38 BST 2021
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a6688c52 by Moritz Muehlenhoff at 2021-06-06T21:10:15+02:00
bullseye triage
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30509,6 +30509,7 @@ CVE-2021-21405 (Lotus is an Implementation of the Filecoin protocol written in G
NOT-FOR-US: Lotus
CVE-2021-21404 (Syncthing is a continuous file synchronization program. In Syncthing b ...)
- syncthing <unfixed> (bug #986593)
+ [bullseye] - syncthing <no-dsa> (Minor issue)
[buster] - syncthing <no-dsa> (Minor issue)
[stretch] - syncthing <postponed> (Minor issue; can be fixed in next update)
NOTE: https://github.com/syncthing/syncthing/security/advisories/GHSA-x462-89pf-6r5h
@@ -41176,6 +41177,7 @@ CVE-2020-28484
RESERVED
CVE-2020-28483 (This affects all versions of package github.com/gin-gonic/gin. When gi ...)
- golang-github-gin-gonic-gin <unfixed> (bug #988943)
+ [bullseye] - golang-github-gin-gonic-gin <no-dsa> (Minor issue)
[buster] - golang-github-gin-gonic-gin <no-dsa> (Minor issue)
NOTE: https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMGINGONICGIN-1041736
NOTE: https://github.com/gin-gonic/gin/pull/2474
@@ -136850,6 +136852,8 @@ CVE-2019-11940 (In the course of decompressing HPACK inside the HTTP2 protocol,
NOT-FOR-US: Facebook Proxygen
CVE-2019-11939 (Golang Facebook Thrift servers would not error upon receiving messages ...)
- thrift <unfixed> (bug #988948)
+ [bullseye] - thrift <no-dsa> (Minor issue)
+ [buster] - thrift <no-dsa> (Minor issue)
NOTE: https://github.com/facebook/fbthrift/commit/483ed864d69f307e9e3b9dadec048216100c0757
CVE-2019-11938 (Java Facebook Thrift servers would not error upon receiving messages d ...)
NOT-FOR-US: Java Facebook Thrift
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6688c52e0d4f5e0c305b4d243afcba97808b03d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a6688c52e0d4f5e0c305b4d243afcba97808b03d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210606/07c132eb/attachment.htm>
More information about the debian-security-tracker-commits
mailing list