Update references for CVE-2020-10759 (Add libjcat and commits)

author: Salvatore Bonaccorso <carnil@debian.org> 2020-06-09 10:22:22 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-06-09 10:22:22 +0200
commit: bfc59a364bdd53dadfd00413dd741958c6642c43 (patch)
tree: 12c8dc17a77804ac100937c0d62f8c832590ff7d
parent: 4e175ab24dce2c1515897c3fb15101814961c996 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index aabe957b10..ceee509a66 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9238,8 +9238,11 @@ CVE-2020-10760
 CVE-2020-10759 [Possible bypass in signature verification]
 	RESERVED
 	- fwupd <unfixed>
+	- libjcat <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1844316
 	NOTE: https://github.com/justinsteven/advisories/blob/master/2020_fwupd_dangling_s3_bucket_and_CVE-2020-10759_signature_verification_bypass.md
+	NOTE: https://github.com/fwupd/fwupd/commit/21f2d12fccef63b8aaa99ec53278ce18250b0444
+	NOTE: https://github.com/hughsie/libjcat/commit/839b89f45a38b2373bf5836337a33f450aaab72e
 CVE-2020-10758
 	RESERVED
 CVE-2020-10757
author	Salvatore Bonaccorso <carnil@debian.org>	2020-06-09 10:22:22 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-06-09 10:22:22 +0200
commit	bfc59a364bdd53dadfd00413dd741958c6642c43 (patch)
tree	12c8dc17a77804ac100937c0d62f8c832590ff7d
parent	4e175ab24dce2c1515897c3fb15101814961c996 (diff)