[Git][security-tracker-team/security-tracker][master] Reference upstream change for CVE-2020-1946
Salvatore Bonaccorso
carnil at debian.org
Fri Mar 26 23:21:14 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dad848b8 by Salvatore Bonaccorso at 2021-03-27T00:20:58+01:00
Reference upstream change for CVE-2020-1946
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -97405,6 +97405,7 @@ CVE-2020-1946 (In Apache SpamAssassin before 3.4.5, malicious rule configuration
- spamassassin 3.4.5~pre1-1 (bug #985962)
NOTE: https://www.openwall.com/lists/oss-security/2021/03/24/3
NOTE: https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7793 (not public)
+ NOTE: https://svn.apache.org/viewvc/spamassassin/branches/3.4/lib/Mail/SpamAssassin/Conf/Parser.pm?r1=1864416&r2=1876381&pathrev=1876381
CVE-2020-1945 (Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default tempora ...)
- ant 1.10.8-1 (low; bug #960630)
[buster] - ant <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dad848b8658b12b7aa6f64d3314c8217b923a7d0
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dad848b8658b12b7aa6f64d3314c8217b923a7d0
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210326/c69984b2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list