[Git][security-tracker-team/security-tracker][master] Update status for CVE-2020-29582/kotlin
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 21 18:11:47 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
76a15c84 by Salvatore Bonaccorso at 2025-03-21T19:10:52+01:00
Update status for CVE-2020-29582/kotlin
Debian maintainer for src:kotlin seems to have been able to determine
that the issue is present, and updated #1001037. Move the status from
undetermined (as we were not able to assess it with enough confidence)
and update it to unfixed.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -347880,7 +347880,7 @@ CVE-2020-29584
CVE-2020-29583 (Firmware version 4.60 of Zyxel USG devices contains an undocumented ac ...)
NOT-FOR-US: Zyxel
CVE-2020-29582 (In JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for ...)
- - kotlin <undetermined> (bug #1001037)
+ - kotlin <unfixed> (bug #1001037)
NOTE: https://youtrack.jetbrains.com/issue/KT-42181 (not public)
CVE-2020-29581 (The official spiped docker images before 1.5-alpine contain a blank pa ...)
NOT-FOR-US: spiped Docker images
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76a15c84f750fe989490d82bda734a337ec31d97
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76a15c84f750fe989490d82bda734a337ec31d97
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250321/243e32d5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list