[Git][security-tracker-team/security-tracker][master] mark CVE-2020-8908 and CVE-2023-2976 as no-dsa for Buster

Sat Jul 1 18:58:18 BST 2023


Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3ecc7e8a by Thorsten Alteholz at 2023-07-01T19:52:53+02:00
mark CVE-2020-8908 and CVE-2023-2976 as no-dsa for Buster

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1783,6 +1783,7 @@ CVE-2023-2976 (Use of Java's default temporary directory for file creation in `F
 	- guava-libraries 32.0.1-1 (bug #1038979)
 	[bookworm] - guava-libraries <no-dsa> (Minor issue)
 	[bullseye] - guava-libraries <no-dsa> (Minor issue)
+	[buster] - guava-libraries <no-dsa> (Minor issue)
 	NOTE: https://github.com/google/guava/releases/tag/v32.0.0
 	NOTE: https://github.com/google/guava/issues/2575
 CVE-2023-35149 (A missing permission check in Jenkins Digital.ai App Management Publis ...)
@@ -245076,6 +245077,7 @@ CVE-2020-8908 (A temp directory creation vulnerability exists in all versions of
 	- guava-libraries 32.0.1-1 (bug #1038979)
 	[bookworm] - guava-libraries <no-dsa> (Minor issue)
 	[bullseye] - guava-libraries <no-dsa> (Minor issue)
+	[buster] - guava-libraries <no-dsa> (Minor issue)
 	NOTE: https://github.com/google/guava/issues/4011
 	NOTE: https://github.com/google/guava/commit/fec0dbc4634006a6162cfd4d0d09c962073ddf40
 	NOTE: Issue incompletely fixed:



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ecc7e8a0e85658c7eebc6bdba005b51bf14f18a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3ecc7e8a0e85658c7eebc6bdba005b51bf14f18a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230701/c058cfd1/attachment.htm>
