add link for fix of CVE-2020-26870

author: Thorsten Alteholz <debian@alteholz.de> 2020-10-29 16:16:41 +0100
committer: Thorsten Alteholz <debian@alteholz.de> 2020-10-29 16:16:41 +0100
commit: 2841d98f05b1b5fdbad2d771f7479ca02d205c76 (patch)
tree: 95ad20a4ee02c8e74ae9b9fe9fc924e80c50f8cc
parent: ac158ec0242194c38ac6337d99f3af702ffe63df (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 585c287f6b..9a8c103b4a 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2921,6 +2921,7 @@ CVE-2020-26871
 CVE-2020-26870 (Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs becaus ...)
 	- dompurify.js <removed>
 	NOTE: https://research.securitum.com/mutation-xss-via-mathml-mutation-dompurify-2-0-17-bypass/
+	NOTE: https://github.com/cure53/DOMPurify/commit/02724b8eb048dd219d6725b05c3000936f11d62d
 CVE-2020-26869 (An information exposure vulnerability exists in PcVue 12, allowing a n ...)
 	NOT-FOR-US: PcVue
 CVE-2020-26868 (A Denial Of Service vulnerability exists in PcVue from version 8.10 on ...)
author	Thorsten Alteholz <debian@alteholz.de>	2020-10-29 16:16:41 +0100
committer	Thorsten Alteholz <debian@alteholz.de>	2020-10-29 16:16:41 +0100
commit	2841d98f05b1b5fdbad2d771f7479ca02d205c76 (patch)
tree	95ad20a4ee02c8e74ae9b9fe9fc924e80c50f8cc
parent	ac158ec0242194c38ac6337d99f3af702ffe63df (diff)