From a9105656dd637947ba9d76187056f1836ce6e78c Mon Sep 17 00:00:00 2001
From: Abhijith PA <abhijith@disroot.org>
Date: Sat, 6 Mar 2021 14:13:22 +0530
Subject: Stretch triage

---
 data/CVE/2020.list | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'data/CVE/2020.list')

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 715ec12097..47b60b4af0 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -1722,11 +1722,13 @@ CVE-2020-35525
 CVE-2020-35524 [Heap-based buffer overflow in TIFF2PDF tool]
 	RESERVED
 	- tiff 4.1.0+git201212-1
+	[stretch] - tiff <no-dsa> (can be fixed along in next DLA)
 	NOTE: https://gitlab.com/libtiff/libtiff/-/commit/7be2e452ddcf6d7abca88f41d3761e6edab72b22
 	NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/159
 CVE-2020-35523 [Integer overflow in tif_getimage.c]
 	RESERVED
 	- tiff 4.1.0+git201212-1
+	[stretch] - tiff <no-dsa> (can be fixed along in next DLA)
 	NOTE: https://gitlab.com/libtiff/libtiff/-/commit/c8d613ef497058fe653c467fc84c70a62a4a71b2
 	NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/160
 CVE-2020-35522 [Memory allocation failure in tif_pixarlog.c]
@@ -5466,6 +5468,7 @@ CVE-2020-28497
 	RESERVED
 CVE-2020-28496 (This affects the package three before 0.125.0. This can happen when ha ...)
 	- three.js <unfixed>
+	[stretch] - three.js <no-dsa> (can be fixed along in next DLA)
 	NOTE: https://github.com/mrdoob/three.js/pull/21143/commits/4a582355216b620176a291ff319d740e619d583e
 	NOTE: https://github.com/mrdoob/three.js/issues/21132
 CVE-2020-28495 (This affects the package total.js before 3.4.7. The set function can b ...)
@@ -8242,6 +8245,7 @@ CVE-2020-27353
 CVE-2020-27352
 	RESERVED
 	- snapd 2.49-1
+	[stretch] - snapd <no-dsa> (Minor issue)
 	NOTE: https://ubuntu.com/security/notices/USN-4728-1
 	NOTE: https://github.com/docker-snap/docker-snap/security/advisories/GHSA-798c-v3jq-h646
 	NOTE: https://bugs.launchpad.net/snapd/+bug/1910456
-- 
cgit v1.2.3