From 95d4558b8f6802871c1e1ed42a6b2131176f3a7d Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Thu, 25 Feb 2021 14:01:01 +0100
Subject: two tiff issues unimportant glibc, openscad no-dsa

---
 data/CVE/2020.list | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

(limited to 'data/CVE/2020.list')

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 791a2fa63d..de6ff1bfdb 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -1727,14 +1727,16 @@ CVE-2020-35523 [Integer overflow in tif_getimage.c]
 	NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/160
 CVE-2020-35522 [Memory allocation failure in tif_pixarlog.c]
 	RESERVED
-	- tiff 4.1.0+git201212-1
+	- tiff 4.1.0+git201212-1 (unimportant)
 	NOTE: https://gitlab.com/libtiff/libtiff/-/commit/98a254f5b92cea22f5436555ff7fceb12afee84d
 	NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/165
+	NOTE: Crash in CLI tool, no security impact
 CVE-2020-35521 [Memory allocation failure in tif_read.c]
 	RESERVED
-	- tiff 4.1.0+git201212-1
+	- tiff 4.1.0+git201212-1 (unimportant)
 	NOTE: https://gitlab.com/libtiff/libtiff/-/commit/b5a935d96b21cda0f434230cdf8ca958cd8b4eef
 	NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/165
+	NOTE: Crash in CLI tool, no security impact
 CVE-2020-35520
 	RESERVED
 CVE-2020-35519
@@ -5239,6 +5241,7 @@ CVE-2020-28600
 	RESERVED
 CVE-2020-28599 (A stack-based buffer overflow vulnerability exists in the import_stl.c ...)
 	- openscad 2021.01-1
+	[buster] - openscad <no-dsa> (Minor issue)
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2020-1223
 	NOTE: https://github.com/openscad/openscad/commit/07ea60f82e94a155f4926f17fad8e8366bc74874
 CVE-2020-28598
-- 
cgit v1.2.3