diff options
author | Thorsten Alteholz <debian@alteholz.de> | 2021-11-27 00:30:49 +0100 |
---|---|---|
committer | Thorsten Alteholz <debian@alteholz.de> | 2021-11-27 00:30:49 +0100 |
commit | 28f194e6763f03ffb55d94bcc8b334152734d04f (patch) | |
tree | 4261fae466be9aa740acea517c8476ba4ffab8a1 | |
parent | 1668aad251f18a861cc23c4d368c2ce0b743a587 (diff) |
mark CVE-2020-27511 as no-dsa for Stretch
-rw-r--r-- | data/CVE/2020.list | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list index 498a1b39db..628da07fe6 100644 --- a/data/CVE/2020.list +++ b/data/CVE/2020.list @@ -8797,6 +8797,7 @@ CVE-2020-27512 CVE-2020-27511 (An issue was discovered in the stripTags and unescapeHTML components i ...) - prototypejs <unfixed> (bug #991898) [bullseye] - prototypejs <no-dsa> (Minor issue) + [stretch] - prototypejs <no-dsa> (Minor issue) NOTE: https://github.com/prototypejs/prototype/blame/dee2f7d8611248abce81287e1be4156011953c90/src/prototype/lang/string.js#L283 NOTE: https://github.com/yetingli/PoCs/blob/main/CVE-2020-27511/Prototype.md NOTE: CVE mentions newer version but vulnerable code exists in older versions too |