From 754ca004defb2e0f2bb418e88155e70b7ba2f6cc Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 28 Feb 2021 11:07:51 +0100
Subject: Mark pypy and pypy3 as unimportant for CVE-2020-29651

Source-wise affected but the svnwc.py does not seem to be part of the
binary packages produced as is an embedded copy of python-py.
---
 data/CVE/2020.list | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

(limited to 'data/CVE/2020.list')

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 220238b32e..c83326395a 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -2819,9 +2819,8 @@ CVE-2020-29651 (A denial of service via regular expression in the py.path.svnwc
 	- python-py 1.10.0-1
 	[buster] - python-py <no-dsa> (Minor issue)
 	[stretch] - python-py <postponed> (Minor issue)
-	- pypy <unfixed>
-	[stretch] - pypy <postponed> (Minor issue)
-	- pypy3 <unfixed>
+	- pypy <unfixed> (unimportant)
+	- pypy3 <unfixed> (unimportant)
 	NOTE: https://github.com/pytest-dev/py/issues/256
 	NOTE: https://github.com/pytest-dev/py/pull/257
 	NOTE: https://github.com/pytest-dev/py/commit/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144
-- 
cgit v1.2.3