Abhijith PA pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f3529261 by Abhijith PA at 2021-01-08T10:19:34+05:30
For fixing CVE-2020-35678, python-autobahn need python-hyperlink
which not available in stretch. Marking as ignored.
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -4790,6 +4790,7 @@ CVE-2020-35679 (smtpd/table.c in OpenSMTPD before 6.8.0p1
lacks a certain regfre
NOTE: https://www.mail-archive.com/[email protected]/msg05188.html
CVE-2020-35678 (Autobahn|Python before 20.12.3 allows redirect header
injection. ...)
- python-autobahn <unfixed> (bug #978416)
+ [stretch] - python-autobahn <ignored> (Need a package which is not in
this suite)
NOTE: https://github.com/crossbario/autobahn-python/pull/1439
NOTE:
https://github.com/crossbario/autobahn-python/commit/f7b7ad5c1066bdcc551775b73da15dca5c111623
(v20.12.3)
CVE-2020-35677 (BigProf Online Invoicing System before 4.0 fails to adequately
sanitiz ...)
=====================================
data/dla-needed.txt
=====================================
@@ -107,8 +107,6 @@ php-horde-trean
NOTE: 20200829: Reconsidering CVE-2019-12095 and what has been written in
https://bugs.horde.org/ticket/14926 (sunweaver)
NOTE: 20200829: We may not expect too much activity regarding this by
upstream. (sunweaver)
--
-python-autobahn (Abhijith PA)
---
qemu (Adrian Bunk)
--
reel
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f352926176d82f2800f2594f3a189137eda0a33f
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f352926176d82f2800f2594f3a189137eda0a33f
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
