[Git][security-tracker-team/security-tracker][master] LTS: ignore CVE-2020-8492 for stretch
Anton Gladky (@gladk)
gladk at debian.org
Sat Feb 12 11:29:35 GMT 2022
Anton Gladky pushed to branch master at Debian Security Tracker / security-tracker
Commits:
512f1354 by Anton Gladky at 2022-02-12T12:29:15+01:00
LTS: ignore CVE-2020-8492 for stretch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -139256,7 +139256,7 @@ CVE-2020-8492 (Python 2.7 through 2.7.17, 3.5 through 3.5.9, 3.6 through 3.6.10,
[jessie] - python3.4 <postponed> (Minor issue)
- python2.7 2.7.18-2 (low; bug #970099)
[buster] - python2.7 <no-dsa> (Minor issue)
- [stretch] - python2.7 <no-dsa> (Minor issue)
+ [stretch] - python2.7 <ignored> (Too destructive to backport. Though the patch is partly ready. https://salsa.debian.org/lts-team/packages/python2.7/-/blob/master/debian/patches/CVE-2020-8492.patch)
[jessie] - python2.7 <no-dsa> (Minor issue)
NOTE: https://bugs.python.org/issue39503
NOTE: https://github.com/python/cpython/pull/18284
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/512f1354232185708f62f9ff240653306c7744d8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/512f1354232185708f62f9ff240653306c7744d8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220212/0441d2bf/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list