CVE-2020-27782,undertow: Fixed in 2.2.4-1

author: Markus Koschany <apo@debian.org> 2021-02-22 16:46:11 +0100
committer: Markus Koschany <apo@debian.org> 2021-02-22 16:46:11 +0100
commit: 004117902ce81fe87095b58a49779ea6a2914ae2 (patch)
tree: db3ea5ade30e14ad661a47b222189ad7c69813ac /data/CVE/2020.list
parent: b8b0070092600341dd8a37a484e9dddf4cafa14e (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index e73149bc02..7f6bd8fd17 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -7098,9 +7098,9 @@ CVE-2020-27783 (A XSS vulnerability was discovered in python-lxml's clean module
 	NOTE: https://github.com/lxml/lxml/commit/a105ab8dc262ec6735977c25c13f0bdfcdec72a7 (lxml-4.6.2)
 CVE-2020-27782
 	RESERVED
-	- undertow <undetermined>
+	- undertow 2.2.4-1
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1901304
-	TODO: check details
+	NOTE: https://issues.redhat.com/browse/UNDERTOW-1824
 CVE-2020-27781 (User credentials can be manipulated and stolen by Native CephFS consum ...)
 	- ceph <unfixed>
 	NOTE: https://bugs.launchpad.net/manila/+bug/1904015
author	Markus Koschany <apo@debian.org>	2021-02-22 16:46:11 +0100
committer	Markus Koschany <apo@debian.org>	2021-02-22 16:46:11 +0100
commit	004117902ce81fe87095b58a49779ea6a2914ae2 (patch)
tree	db3ea5ade30e14ad661a47b222189ad7c69813ac /data/CVE/2020.list
parent	b8b0070092600341dd8a37a484e9dddf4cafa14e (diff)