diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-03-31 12:43:43 +0200 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-03-31 12:43:43 +0200 |
| commit | 0f0d382016e9564765e3ec573d237aa49630b850 (patch) | |
| tree | 35529effa2af1abf4a14dd40771a4ca30f2cd343 | |
| parent | c9fd0b17ec38b4d681cc611cd97cfcac2afa9459 (diff) | |
Remove no-dsa tagged entries for curl which got an update
| -rw-r--r-- | data/CVE/2020.list | 6 |
1 files changed, 0 insertions, 6 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index 1030e75814..d00066e44f 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -51929,20 +51929,17 @@ CVE-2020-8287 (Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow t CVE-2020-8286 (curl 7.41.0 through 7.73.0 is vulnerable to an improper check for cert ...) {DLA-2500-1} - curl 7.74.0-1 (bug #977161) - [buster] - curl <no-dsa> (Minor issue) NOTE: https://curl.se/docs/CVE-2020-8286.html NOTE: https://github.com/curl/curl/commit/d9d01672785b8ac04aab1abb6de95fe3072ae199 (curl-7_74_0) CVE-2020-8285 (curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recu ...) {DLA-2500-1} - curl 7.74.0-1 (bug #977162) - [buster] - curl <no-dsa> (Minor issue) NOTE: https://curl.se/docs/CVE-2020-8285.html NOTE: https://github.com/curl/curl/issues/6255 NOTE: https://github.com/curl/curl/commit/69a358f2186e04cf44698b5100332cbf1ee7f01d (curl-7_74_0) CVE-2020-8284 (A malicious server can use the FTP PASV response to trick curl 7.73.0 ...) {DLA-2500-1} - curl 7.74.0-1 (bug #977163) - [buster] - curl <no-dsa> (Minor issue) NOTE: https://curl.se/docs/CVE-2020-8284.html NOTE: https://github.com/curl/curl/commit/ec9cc725d598ac77de7b6df8afeec292b3c8ad46 (curl-7_74_0) CVE-2020-8283 (An authorised user on a Windows host running Citrix Universal Print Se ...) @@ -52079,7 +52076,6 @@ CVE-2020-8232 (An information disclosure vulnerability exists in EdgeMax EdgeSwi CVE-2020-8231 (Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can us ...) {DLA-2382-1} - curl 7.72.0-1 (bug #968831) - [buster] - curl <no-dsa> (Minor issue) NOTE: https://curl.haxx.se/docs/CVE-2020-8231.html NOTE: https://github.com/curl/curl/pull/5824 NOTE: https://github.com/curl/curl/commit/3c9e021f86872baae412a427e807fbfa2f3e8 @@ -52218,7 +52214,6 @@ CVE-2020-8178 (Insufficient input validation in npm package `jison` <= 0.4.18 CVE-2020-8177 (curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of na ...) {DLA-2295-1} - curl 7.72.0-1 (bug #965281) - [buster] - curl <no-dsa> (Minor issue) NOTE: https://curl.haxx.se/docs/CVE-2020-8177.html NOTE: https://github.com/curl/curl/commit/8236aba58542c5f89f1d41ca09d84579efb05e22 (7.71.0) CVE-2020-8176 (A cross-site scripting vulnerability exists in koa-shopify-auth v3.1.6 ...) @@ -52242,7 +52237,6 @@ CVE-2020-8170 (We have recently released new version of AirMax AirOS firmware v6 NOT-FOR-US: AirMax AirOS CVE-2020-8169 (curl 7.62.0 through 7.70.0 is vulnerable to an information disclosure ...) - curl 7.72.0-1 (bug #965280) - [buster] - curl <no-dsa> (Minor issue) [stretch] - curl <not-affected> (Vulnerable code introduced later) [jessie] - curl <not-affected> (Vulnerable code introduced later) NOTE: https://curl.haxx.se/docs/CVE-2020-8169.html |