diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2020-10-26 21:37:24 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2020-10-26 21:37:24 +0100 |
| commit | b96b6a39d88dd0ecba58d28153028d51bfc0ff4d (patch) | |
| tree | 1e644dae367398f384762089d3f2d4c8004448c7 | |
| parent | 651a523e427d9159f9f693da53868a9f2a2de7a4 (diff) | |
Add CVE-2020-15271/lookatme
| -rw-r--r-- | data/CVE/list | 5 |
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list index 2df1427cf9..3cd767403d 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -26678,7 +26678,10 @@ CVE-2020-15273 CVE-2020-15272 (In the git-tag-annotation-action (open source GitHub Action) before ve ...) TODO: check CVE-2020-15271 (In lookatme (python/pypi package) versions prior to 2.3.0, the package ...) - TODO: check + - lookatme <unfixed> + NOTE: https://github.com/d0c-s4vage/lookatme/security/advisories/GHSA-c84h-w6cr-5v8q + NOTE: https://github.com/d0c-s4vage/lookatme/commit/72fe36b784b234548d49dae60b840c37f0eb8d84 (v2.3.0) + NOTE: https://github.com/d0c-s4vage/lookatme/pull/110 CVE-2020-15270 (Parse Server (npm package parse-server) broadcasts events to all clien ...) NOT-FOR-US: Node parse-server CVE-2020-15269 (In Spree before versions 3.7.11, 4.0.4, or 4.1.11, expired user tokens ...) |