[Git][security-tracker-team/security-tracker][master] buster/bullseye triage

Wed, 24 Nov 2021 04:49:25 -0800 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
91b14bd7 by Moritz Muehlenhoff at 2021-11-24T13:48:44+01:00
buster/bullseye triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -100581,16 +100581,22 @@ CVE-2020-16157 (A Stored XSS vulnerability exists 
in Nagios Log Server before 2.
 CVE-2020-16156 [Signature Verification Bypass]
        RESERVED
        - perl <unfixed>
+       [bullseye] - perl <no-dsa> (Minor issue)
+       [buster] - perl <no-dsa> (Minor issue)
        NOTE: 
https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/
        NOTE: 
http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html
 CVE-2020-16155 [does not uniquely define signed data]
        RESERVED
        - libcpan-checksums-perl <unfixed>
+       [bullseye] - libcpan-checksums-perl <no-dsa> (Minor issue)
+       [buster] - libcpan-checksums-perl <no-dsa> (Minor issue)
        NOTE: 
https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/
        NOTE: 
http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html
 CVE-2020-16154 [Signature Verification Bypass]
        RESERVED
        - cpanminus <unfixed>
+       [bullseye] - cpanminus <no-dsa> (Minor issue)
+       [buster] - cpanminus <no-dsa> (Minor issue)
        NOTE: 
https://blog.hackeriet.no/cpan-signature-verification-vulnerabilities/
        NOTE: 
http://blogs.perl.org/users/neilb/2021/11/addressing-cpan-vulnerabilities-related-to-checksums.html
 CVE-2020-16153



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91b14bd7f23100923b81874367b749e50546aa16

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/91b14bd7f23100923b81874367b749e50546aa16
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to