Add CVE-2020-35776/asterisk

author: Salvatore Bonaccorso <carnil@debian.org> 2021-02-20 07:35:14 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-02-20 07:35:14 +0100
commit: 785eae13069624c8689e1ea8d88d9fd44271b6ea (patch)
tree: ac404aa5e4b69759710d8f8581ca2bbb166d2d35 /data/CVE/2020.list
parent: 8bb6af79579689dff6967d9ada3bd70e12841f63 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index c1e64a0fea..99389fc16d 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -1111,7 +1111,9 @@ CVE-2020-35778 (Certain NETGEAR devices are affected by CSRF. This affects GS716
 CVE-2020-35777 (NETGEAR DGN2200v1 devices before v1.0.0.58 are affected by command inj ...)
 	NOT-FOR-US: Netgear
 CVE-2020-35776 (A buffer overflow in res_pjsip_diversion.c in Sangoma Asterisk version ...)
-	TODO: check
+	- asterisk <unfixed>
+	NOTE: https://downloads.asterisk.org/pub/security/AST-2021-001.html
+	NOTE: https://issues.asterisk.org/jira/browse/ASTERISK-29227
 CVE-2020-35775 (CITSmart before 9.1.2.23 allows LDAP Injection. ...)
 	NOT-FOR-US: CITSmart
 CVE-2020-35774 (server/handler/HistogramQueryHandler.scala in Twitter TwitterServer (a ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-02-20 07:35:14 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-02-20 07:35:14 +0100
commit	785eae13069624c8689e1ea8d88d9fd44271b6ea (patch)
tree	ac404aa5e4b69759710d8f8581ca2bbb166d2d35 /data/CVE/2020.list
parent	8bb6af79579689dff6967d9ada3bd70e12841f63 (diff)