Scott Kitterman pushed to branch master at Debian Security Tracker / security-tracker
Commits: b2007687 by Scott Kitterman at 2020-02-23T08:22:05-05:00 Update python-bleach TEMP-0951907-7D0FFB (#951907) to indicate jessie/stretch not affected - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -44,6 +44,8 @@ CVE-2020-9336 (fauzantrif eLection 2.0 has XSS via the Admin Dashboard -> Set NOT-FOR-US: fauzantrif eLection CVE-2020-XXXX [mutation XSS vulnerability] - python-bleach 3.1.1-1 (bug #951907) + [stretch] - python-bleach <not-affected> (Vulnerable code introduced later) + [jessie] - python-bleach <not-affected> (Vulnerable code introduced later) NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1615315 (not public) NOTE: https://github.com/mozilla/bleach/security/advisories/GHSA-q65m-pv3f-wr5r CVE-2020-9335 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b2007687dcd7a17c62cfb47af81b08e99add8f08 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b2007687dcd7a17c62cfb47af81b08e99add8f08 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits