summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2020-02-15 11:35:18 +0100
committerSalvatore Bonaccorso <carnil@debian.org>2020-02-15 11:35:18 +0100
commit7cad12340590d87b055878a1401d66689149c763 (patch)
tree77f1db5588c1a9c26a837ad7bc475b6521855e8d
parent4e5f5c60b1401afe06c2620fde0e2f40859ca556 (diff)
Add reference to upstream fix for CVE-2020-8632/cloud-init
-rw-r--r--data/CVE/list1
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index cb239c19ee..00ab5ab9be 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -790,6 +790,7 @@ CVE-2020-8632 (In cloud-init through 19.4, rand_user_password in cloudinit/confi
[stretch] - cloud-init <no-dsa> (Minor issue)
NOTE: https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1860795
NOTE: https://github.com/canonical/cloud-init/pull/189
+ NOTE: https://github.com/canonical/cloud-init/commit/42788bf24a1a0a5421a2d00a7f59b59e38ba1a14
CVE-2020-8631 (cloud-init through 19.4 relies on Mersenne Twister for a random passwo ...)
- cloud-init <unfixed>
[buster] - cloud-init <no-dsa> (Minor issue)

© 2014-2024 Faster IT GmbH | imprint | privacy policy