[Git][security-tracker-team/security-tracker][master] CVE-2020-27223/jetty: stretch not-affected

Tue May 11 11:33:14 BST 2021


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6efb962b by Sylvain Beucler at 2021-05-11T12:32:57+02:00
CVE-2020-27223/jetty: stretch not-affected

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -42774,11 +42774,12 @@ CVE-2020-27224 (In Eclipse Theia versions up to and including 1.2.0, the Markdow
 	NOT-FOR-US: Eclipse Theia
 CVE-2020-27223 (In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0 ...)
 	- jetty9 9.4.38-1
-	[stretch] - jetty9 <no-dsa> (Minor issue)
+	[stretch] - jetty9 <not-affected> (Vulnerable code introduced later)
 	NOTE: https://bugs.eclipse.org/bugs/show_bug.cgi?id=571128
 	NOTE: https://github.com/eclipse/jetty.project/security/advisories/GHSA-m394-8rww-3jr7
 	NOTE: https://github.com/eclipse/jetty.project/issues/5963
 	NOTE: https://github.com/eclipse/jetty.project/commit/10e531756b972162eed402c44d0244f7f6b85131
+	NOTE: Introduced by https://github.com/eclipse/jetty.project/commit/cb84946467dc55826a8021ea2592ba58252863c9 (jetty-9.4.6.v20170531)
 CVE-2020-27222 (In Eclipse Californium version 2.3.0 to 2.6.0, the certificate based ( ...)
 	NOT-FOR-US: Eclipse Californium
 CVE-2020-27221 (In Eclipse OpenJ9 up to and including version 0.23, there is potential ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6efb962b09d7791a4c6a58bb78841f99cf378951

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6efb962b09d7791a4c6a58bb78841f99cf378951
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210511/5302e318/attachment.htm>
