Add CVE-2020-27223/jetty

author: Salvatore Bonaccorso <carnil@debian.org> 2021-02-27 11:59:22 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-02-27 11:59:37 +0100
commit: 04e613f5ecfa259ba9cf7b3bea178c482b3cd51b (patch)
tree: ebd009019bffa705c7b279cb325153e3736f1031 /data/CVE/2020.list
parent: 78710c608cb38a0a14e96a72ae74973564062b32 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 4dd50f23ed..8ea454370f 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -8490,7 +8490,9 @@ CVE-2020-27225
 CVE-2020-27224 (In Eclipse Theia versions up to and including 1.2.0, the Markdown Prev ...)
 	NOT-FOR-US: Eclipse Theia
 CVE-2020-27223 (In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0 ...)
-	TODO: check
+	- jetty9 <unfixed>
+	NOTE: https://bugs.eclipse.org/bugs/show_bug.cgi?id=571128
+	NOTE: https://github.com/eclipse/jetty.project/security/advisories/GHSA-m394-8rww-3jr7
 CVE-2020-27222 (In Eclipse Californium version 2.3.0 to 2.6.0, the certificate based ( ...)
 	NOT-FOR-US: Eclipse Californium
 CVE-2020-27221 (In Eclipse OpenJ9 up to and including version 0.23, there is potential ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-02-27 11:59:22 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-02-27 11:59:37 +0100
commit	04e613f5ecfa259ba9cf7b3bea178c482b3cd51b (patch)
tree	ebd009019bffa705c7b279cb325153e3736f1031 /data/CVE/2020.list
parent	78710c608cb38a0a14e96a72ae74973564062b32 (diff)