diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2020-09-28 15:17:55 +0200 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2020-09-28 15:17:55 +0200 |
commit | 9c4b954022481ab8deef016c9941eb1393a156a1 (patch) | |
tree | df4363a4bc0ab05948c104646a16cb3a1b608de5 /data | |
parent | c244fec5663af986f12b0da63bf20f36882f7377 (diff) |
fixup CVE-2020-25869 vs CVE-2020-25689, Phab task got fixed with the correct ID
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 13 | ||||
-rw-r--r-- | data/DSA/list | 2 |
2 files changed, 6 insertions, 9 deletions
diff --git a/data/CVE/list b/data/CVE/list index f0cc20a0d7..735567136b 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -527,8 +527,11 @@ CVE-2020-25871 CVE-2020-25870 RESERVED CVE-2020-25869 (An information leak was discovered in MediaWiki before 1.31.10 and 1.3 ...) - TODO: check - NOTE: Typo/mixup in CVE assignment with CVE-2020-25689, clarifying + NOT-FOR-US: CentralAuth MediaWiki extension + NOTE: The extension requires some new infrastructure code which was added to the + NOTE: MediaWiki 1.31.9 / 1.34.3 security releases announced at + NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html + NOTE: https://phabricator.wikimedia.org/T260485 CVE-2020-25868 RESERVED CVE-2020-25867 @@ -953,12 +956,6 @@ CVE-2020-25690 RESERVED CVE-2020-25689 RESERVED - {DSA-4767-1} - NOT-FOR-US: CentralAuth MediaWiki extension - NOTE: The extension requires some new infrastructure code which was added to the - NOTE: MediaWiki 1.31.9 / 1.34.3 security releases announced at - NOTE: https://lists.wikimedia.org/pipermail/wikitech-l/2020-September/093888.html - NOTE: https://phabricator.wikimedia.org/T260485 CVE-2020-25688 RESERVED CVE-2020-25687 diff --git a/data/DSA/list b/data/DSA/list index 52d4570023..f185195cd1 100644 --- a/data/DSA/list +++ b/data/DSA/list @@ -1,5 +1,5 @@ [25 Sep 2020] DSA-4767-1 mediawiki - security update - {CVE-2020-15005 CVE-2020-17367 CVE-2020-17368 CVE-2020-25689 CVE-2020-25812 CVE-2020-25813 CVE-2020-25814 CVE-2020-25827 CVE-2020-25828} + {CVE-2020-15005 CVE-2020-17367 CVE-2020-17368 CVE-2020-25812 CVE-2020-25813 CVE-2020-25814 CVE-2020-25827 CVE-2020-25828} [buster] - mediawiki 1:1.31.10-1~deb10u1 [24 Sep 2020] DSA-4766-1 rails - security update {CVE-2020-8162 CVE-2020-8164 CVE-2020-8165 CVE-2020-8166 CVE-2020-8167 CVE-2020-15169} |