Add CVE-2020-11987/batik

author: Salvatore Bonaccorso <carnil@debian.org> 2021-02-24 21:40:26 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-02-24 21:40:26 +0100
commit: cabe1376ff5abb1f168faf3c85e9bde4234657df (patch)
tree: 6c881a2713d705264f41962a6fee2e4680146b33 /data/CVE/2020.list
parent: 786278195d91594b26fb2860986232d9fd75ffca (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 97ec143136..fb4c4cf43c 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -42551,7 +42551,8 @@ CVE-2020-11989 (Apache Shiro before 1.5.3, when using Apache Shiro with Spring d
 CVE-2020-11988 (Apache XmlGraphics Commons 2.4 is vulnerable to server-side request fo ...)
 	TODO: check
 CVE-2020-11987 (Apache Batik 1.13 is vulnerable to server-side request forgery, caused ...)
-	TODO: check
+	- batik <unfixed>
+	TODO: check fixing commits
 CVE-2020-11986 (To be able to analyze gradle projects, the build scripts need to be ex ...)
 	- netbeans 12.1-1
 	[stretch] - netbeans <no-dsa> (Minor issue)
author	Salvatore Bonaccorso <carnil@debian.org>	2021-02-24 21:40:26 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-02-24 21:40:26 +0100
commit	cabe1376ff5abb1f168faf3c85e9bde4234657df (patch)
tree	6c881a2713d705264f41962a6fee2e4680146b33 /data/CVE/2020.list
parent	786278195d91594b26fb2860986232d9fd75ffca (diff)