[Git][security-tracker-team/security-tracker][master] Mark CVE-2021-39360/libzapojit as no-dsa
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Sep 2 21:05:46 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
24bfd36d by Salvatore Bonaccorso at 2021-09-02T22:04:51+02:00
Mark CVE-2021-39360/libzapojit as no-dsa
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2320,6 +2320,8 @@ CVE-2021-39361 (In GNOME evolution-rss through 0.3.96, network-soup.c does not e
NOTE: https://gitlab.gnome.org/GNOME/evolution-rss/-/issues/11
CVE-2021-39360 (In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS ...)
- libzapojit <unfixed>
+ [bullseye] - libzapojit <no-dsa> (Minor issue)
+ [buster] - libzapojit <no-dsa> (Minor issue)
[stretch] - libzapojit <postponed> (Minor issue, revisit when/if fixed upstream)
NOTE: https://blogs.gnome.org/mcatanzaro/2021/05/25/reminder-soupsessionsync-and-soupsessionasync-default-to-no-tls-certificate-verification/
NOTE: https://gitlab.gnome.org/GNOME/libzapojit/-/issues/4
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24bfd36db8a1e13dac25f4ab50049d00db0bf79d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/24bfd36db8a1e13dac25f4ab50049d00db0bf79d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210902/c9ed180c/attachment.htm>
More information about the debian-security-tracker-commits
mailing list