summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorThorsten Alteholz <debian@alteholz.de>2021-11-27 00:30:49 +0100
committerThorsten Alteholz <debian@alteholz.de>2021-11-27 00:30:49 +0100
commit28f194e6763f03ffb55d94bcc8b334152734d04f (patch)
tree4261fae466be9aa740acea517c8476ba4ffab8a1
parent1668aad251f18a861cc23c4d368c2ce0b743a587 (diff)
mark CVE-2020-27511 as no-dsa for Stretch
-rw-r--r--data/CVE/2020.list1
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 498a1b39db..628da07fe6 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -8797,6 +8797,7 @@ CVE-2020-27512
CVE-2020-27511 (An issue was discovered in the stripTags and unescapeHTML components i ...)
- prototypejs <unfixed> (bug #991898)
[bullseye] - prototypejs <no-dsa> (Minor issue)
+ [stretch] - prototypejs <no-dsa> (Minor issue)
NOTE: https://github.com/prototypejs/prototype/blame/dee2f7d8611248abce81287e1be4156011953c90/src/prototype/lang/string.js#L283
NOTE: https://github.com/yetingli/PoCs/blob/main/CVE-2020-27511/Prototype.md
NOTE: CVE mentions newer version but vulnerable code exists in older versions too

© 2014-2024 Faster IT GmbH | imprint | privacy policy