[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2020-80{20,21,30}/open-build-service

Fri, 26 Feb 2021 10:18:18 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1d251523 by Salvatore Bonaccorso at 2021-02-26T19:17:36+01:00
Add Debian bug reference for CVE-2020-80{20,21,30}/open-build-service

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -76950,7 +76950,7 @@ CVE-2020-8033 (Ruckus R500 3.4.2.0.384 devices allow 
XSS via the index.asp Devic
 CVE-2020-8032 (A Insecure Temporary File vulnerability in the packaging of 
cyrus-sasl ...)
        - cyrus-sasl2 <not-affected> (openSUSE specific packaging issue)
 CVE-2020-8031 (A Improper Neutralization of Input During Web Page Generation 
('Cross- ...)
-       - open-build-service <unfixed>
+       - open-build-service <unfixed> (bug #983576)
        NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1178880
 CVE-2020-8030 (A Insecure Temporary File vulnerability in skuba of SUSE CaaS 
Platform ...)
        NOT-FOR-US: SuSE CaaS
@@ -76972,12 +76972,12 @@ CVE-2020-8022 (A Incorrect Default Permissions 
vulnerability in the packaging of
        NOT-FOR-US: SAP
 CVE-2020-8021 (a Improper Access Control vulnerability in of Open Build 
Service allow ...)
        {DLA-2545-1}
-       - open-build-service <unfixed>
+       - open-build-service <unfixed> (bug #983576)
        NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1171649
        NOTE: 
https://github.com/openSUSE/open-build-service/commit/7323c904f86ba9e04065c23422d06c03647589fb
 CVE-2020-8020 (A Improper Neutralization of Input During Web Page Generation 
vulnerab ...)
        {DLA-2545-1}
-       - open-build-service <unfixed>
+       - open-build-service <unfixed> (bug #983576)
        NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1171439
        NOTE: 
https://github.com/openSUSE/open-build-service/commit/7cc32c8e2ff7290698e101d9a80a9dc29a5500fb
 CVE-2020-8019 (A UNIX Symbolic Link (Symlink) Following vulnerability in the 
packagin ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d2515233d88069e355de1ca058ab14053ed5287

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1d2515233d88069e355de1ca058ab14053ed5287
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to