[Git][security-tracker-team/security-tracker][master] 2 commits: CVE-2020-8244 fixed in recent upload

Thorsten Alteholz (@alteholz) alteholz at debian.org
Wed Jun 30 23:06:47 BST 2021 


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3c86b2b5 by Thorsten Alteholz at 2021-07-01T00:05:58+02:00
CVE-2020-8244 fixed in recent upload

- - - - -
2cd90c4f by Thorsten Alteholz at 2021-07-01T00:06:35+02:00
Reserve DLA-2698-1 for node-bl

- - - - -


2 changed files:

- data/CVE/list
- data/DLA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -97765,7 +97765,6 @@ CVE-2020-8245 (Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 b
 CVE-2020-8244 (A buffer over-read vulnerability exists in bl <4.0.3, <3.0.1, &l ...)
 	- node-bl 4.0.3-1 (bug #969309)
 	[buster] - node-bl 1.1.2-1+deb10u1
-	[stretch] - node-bl <no-dsa> (Minor issue)
 	NOTE: https://hackerone.com/reports/966347
 	NOTE: https://github.com/rvagg/bl/commit/d3e240e3b8ba4048d3c76ef5fb9dd1f8872d3190
 CVE-2020-8243 (A vulnerability in the Pulse Connect Secure < 9.1R8.2 admin web int ...)


=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[01 Jul 2021] DLA-2698-1 node-bl - security update
+	{CVE-2020-8244}
+	[stretch] - node-bl 1.1.2-1+deb9u1
 [29 Jun 2021] DLA-2697-1 fluidsynth - security update
 	{CVE-2021-28421}
 	[stretch] - fluidsynth 1.1.6-4+deb9u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0209019f70eb2c09b40cde17f3bf3e5a9863829c...2cd90c4ff252e24ad3000b1f8efafff03d61cd0a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/0209019f70eb2c09b40cde17f3bf3e5a9863829c...2cd90c4ff252e24ad3000b1f8efafff03d61cd0a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210630/43f6546a/attachment.htm>

More information about the debian-security-tracker-commits mailing list