summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2020-02-15 11:35:18 +0100
committerSalvatore Bonaccorso <carnil@debian.org>2020-02-15 11:35:18 +0100
commit6b6e1d321cc05bd85e8ebbf983df89224fe37d1f (patch)
treebb387ababef5acc0a023c3b5d669f7726d98921c
parent62f2f987894f90fe28833f8196c219f1fd3db26d (diff)
Add reference to upstream fix for CVE-2020-8632/cloud-init
Diffstat
-rw-r--r--data/CVE/2020.list1
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 3c217caa7b..70f4534b08 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -742,6 +742,7 @@ CVE-2020-8632 (In cloud-init through 19.4, rand_user_password in cloudinit/confi
[stretch] - cloud-init <no-dsa> (Minor issue)
NOTE: https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1860795
NOTE: https://github.com/canonical/cloud-init/pull/189
+ NOTE: https://github.com/canonical/cloud-init/commit/42788bf24a1a0a5421a2d00a7f59b59e38ba1a14
CVE-2020-8631 (cloud-init through 19.4 relies on Mersenne Twister for a random passwo ...)
- cloud-init <unfixed>
[buster] - cloud-init <no-dsa> (Minor issue)

© 2014-2024 Faster IT GmbH | imprint | privacy policy