From 0891b035e30820aa64b8b127044e47582a8a1965 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 28 Feb 2021 10:44:29 +0100
Subject: Mark CVE-2020-28491 as no-dsa

---
 data/CVE/2020.list | 1 +
 1 file changed, 1 insertion(+)

(limited to 'data/CVE/2020.list')

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 116fdddb2f..d379d27a8a 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -5473,6 +5473,7 @@ CVE-2020-28492
 	REJECTED
 CVE-2020-28491 (This affects the package com.fasterxml.jackson.dataformat:jackson-data ...)
 	- jackson-dataformat-cbor <unfixed>
+	[buster] - jackson-dataformat-cbor <no-dsa> (Minor issue)
 	NOTE: https://github.com/FasterXML/jackson-dataformats-binary/commit/de072d314af8f5f269c8abec6930652af67bc8e6
 	NOTE: https://github.com/FasterXML/jackson-dataformats-binary/issues/186
 CVE-2020-28490 (The package async-git before 1.13.2 are vulnerable to Command Injectio ...)
-- 
cgit v1.2.3